Browse Security Advisories
Moderate Security Advisories for flask-appbuilder Clear Filters
Moderate
about 2 months ago
Active Record logging vulnerable to ANSI escape injection
rubygems
activerecord
Moderate
about 2 months ago
OMERO.web displays unecessary user information when requesting password reset
pypi
omero-web
Moderate
about 2 months ago
Apache Tomcat Session Fixation vulnerability
maven
org.apache.tomcat:tomcat-catalina
Moderate
about 2 months ago
Bouncy Castle for Java bcpkix, bcprov, bcpkix-fips on All (API modules) allows Excessive Allocation
maven
org.bouncycastle:bcpkix-fips, org.bouncycastle:bcpkix-jdk18on, org.bouncycastle:bcpkix-jdk15to18, org.bouncycastle:bcpkix-jdk15on
Moderate
about 2 months ago
Liferay Portal 7.4.0 and Liferay DXP have a reflected cross-site scripting (XSS) vulnerability
maven
com.liferay:com.liferay.frontend.taglib.clay, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
svg-sanitizer Bypasses Attribute Sanitization
packagist
enshrined/svg-sanitize
Moderate
about 2 months ago
Liferay Portal and Liferay DXP have a reflected cross-site scripting vulnerability
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability
maven
com.liferay:com.liferay.account.admin.web, com.liferay:com.liferay.users.admin.web, com.liferay:com.liferay.image.uploader.web, com.liferay:com.liferay.frontend.taglib, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Bouncy Castle for Java on All (API modules) allows Excessive Allocation
maven
org.bouncycastle:bctls-jdk18on, org.bouncycastle:bctls-jdk15to18, org.bouncycastle:bctls-jdk14, org.bouncycastle:bcprov-jdk18on, org.bouncycastle:bcprov-jdk15to18, org.bouncycastle:bcprov-jdk14
Moderate
about 2 months ago
Oak Server has ReDoS in x-forwarded-proto and x-forwarded-for headers
npm
@oakserver/oak
Moderate
about 2 months ago
slab allows out-of-bounds access in `get_disjoint_mut` due to incorrect bounds check
cargo
slab
Moderate
about 2 months ago
Mattermost Confluence Plugin has Missing Authorization vulnerability
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin has Missing Authorization vulnerability
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin has Missing Authorization vulnerability
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin is Missing Authentication for Critical Function
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin has Missing Authorization vulnerability
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
Mattermost Confluence Plugin has Missing Authorization vulnerability
go
github.com/mattermost/mattermost-plugin-confluence
Moderate
about 2 months ago
TinyScientist has Path Traversal Vulnerability in PDF Review Function (CWE-22)
pypi
tiny-scientist
Moderate
about 2 months ago
Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Craft CMS has a theoretical bypass for CVE-2025-23209
packagist
craftcms/cms
Moderate
about 2 months ago
Liferay Portal Reflected XSS in blogs-web
maven
com.liferay:com.liferay.blogs.web
Moderate
about 2 months ago
OpenBao LDAP MFA Enforcement Bypass When Using Username As Alias
go
github.com/openbao/openbao
Moderate
about 2 months ago
OpenBao Login MFA Bypass of Rate Limiting and TOTP Token Reuse
go
github.com/openbao/openbao
Moderate
about 2 months ago
OpenBao Userpass and LDAP User Lockout Bypass
go
github.com/openbao/openbao
Moderate
about 2 months ago
Apache CXF: Untrusted JMS configuration can lead to RCE
maven
org.apache.cxf:cxf-rt-transports-jms
Moderate
about 2 months ago
ExecuTorch integer overflow vulnerability leads to code execution
pypi
executorch
Moderate
about 2 months ago
operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd
go
github.com/operator-framework/operator-sdk
Moderate
about 2 months ago
Astros's duplicate trailing slash feature leads to an open redirection security issue
npm
astro
Moderate
about 2 months ago
The Thinbus Javascript Secure Remote Password (SRP) Client Generates Fewer Bits of Entropy Than Intended
npm
thinbus-srp
Moderate
about 2 months ago
Hugging Face Transformers Regular Expression Denial of Service (ReDoS) vulnerability
pypi
transformers
Moderate
about 2 months ago
HashiCorp Vault ldap auth method may not have correctly enforced MFA
go
github.com/hashicorp/vault
Moderate
about 2 months ago
Shopware race condition bypasses voucher restrictions
packagist
shopware/platform
Moderate
about 2 months ago
Concrete CMS vulnerable to Reflected Cross-Site Scripting (XSS) in Conversation Messages Dashboard Page
packagist
concrete5/concrete5
Moderate
about 2 months ago
XWiki allows Reflected XSS in two templates
maven
org.xwiki.platform:xwiki-platform-web-templates
Moderate
about 2 months ago
FPDI allows Memory Exhaustion (OOM) in PDF Parser which leads to Denial of Service
packagist
setasign/fpdi
Moderate
about 2 months ago
Liferay Portal CAPTCHA Bypass for Gogo Shell
maven
com.liferay:com.liferay.captcha.impl
Moderate
about 2 months ago
russh is missing overflow checks during channel windows adjust
cargo
russh
Moderate
about 2 months ago
Grafana Infinity Datasource Plugin SSRF Vulnerability
go
github.com/grafana/grafana-infinity-datasource
Moderate
2 months ago
Apache Zeppelin: XSS in the Helium module
maven
org.apache.zeppelin:zeppelin-web
Moderate
2 months ago
Apache Zeppelin: Missing Origin Validation in WebSockets vulnerability
maven
org.apache.zeppelin:zeppelin-shell
Moderate
2 months ago
Apache Zeppelin: Arbitrary file read by adding malicious JDBC connection string
maven
org.apache.zeppelin:zeppelin-jdbc
Moderate
2 months ago
Hashicorp Vault has Login MFA Rate Limit Bypass Vulnerability
go
github.com/hashicorp/vault
Moderate
2 months ago
Hashicorp Vault has Incorrect Validation for Non-CA Certificates
go
github.com/hashicorp/vault
Moderate
2 months ago
Hashicorp Vault has Lockout Feature Authentication Bypass
go
github.com/hashicorp/vault
Moderate
2 months ago
Hashicorp Vault's TOTP Secrets Engine Susceptible to Code Reuse
go
github.com/hashicorp/vault
Moderate
2 months ago
Microweber has Reflected XSS Vulnerability in the layout Parameter
packagist
microweber/microweber
Moderate
2 months ago
Microweber XSS Vulnerability in the homepage Endpoint
packagist
microweber/microweber
Moderate
2 months ago
Microweber has Reflected XSS Vulnerability in the id Parameter
packagist
microweber/microweber
Moderate
2 months ago
OpenSearch unauthorized data access on fields protected by field level security if field is a member of an object
maven
org.opensearch.plugin:opensearch-security
Moderate
2 months ago
OpenSearch unauthorized data access on fields protected by field masking for fields of type ip, geo_point, geo_shape, xy_point, xy_shape
maven
org.opensearch.plugin:opensearch-security
Moderate
2 months ago
MaterialX Lack of MTLX Import Depth Limit Leads to DoS (Denial-Of-Service) Via Stack Exhaustion
pypi
MaterialX
Moderate
2 months ago
MaterialX Stack Overflow via Lack of MTLX XML Parsing Recursion Limit
pypi
MaterialX
Moderate
2 months ago
OpenEXR ScanLineProcess::run_fill NULL Pointer Write In "reduceMemory" Mode
pypi
OpenEXR
Moderate
2 months ago
OpenEXR Out of Bounds Heap Read due to Bad Pointer Arithmetic in LossyDctDecoder_execute
pypi
OpenEXR
Moderate
2 months ago
Apache JSPWiki Cross-Site Scripting (XSS) Vulnerability in the Image Plugin
maven
org.apache.jspwiki:jspwiki-main
Moderate
2 months ago
Apache JSPWiki Cross-Site Scripting (XSS) Vulnerability via Header Link Rendering
maven
org.apache.jspwiki:jspwiki-markdown, org.apache.jspwiki:jspwiki-main
Moderate
2 months ago
Apache Struts Extras Before 2 has an Improper Output Neutralization for Logs Vulnerability
maven
org.apache.struts:struts-extras
Moderate
2 months ago
OAuth2-Proxy's `--gitlab-group` GitLab Group Authorization config flag stopped working in v7.0.0
go
github.com/oauth2-proxy/oauth2-proxy/v7
Moderate
2 months ago
SixLabors ImageSharp Has Infinite Loop in GIF Decoder When Skipping Malformed Comment Extension Blocks
nuget
SixLabors.ImageSharp
Moderate
2 months ago
Pyload log Injection via API /json/add_package in add_name parameter
pypi
pyload-ng
Moderate
2 months ago
Keycloak Privilege Escalation Vulnerability in Admin Console (FGAPv2 Enabled)
maven
org.keycloak:keycloak-services
Moderate
2 months ago
Keycloak phishing attack via email verification step in first login flow
maven
org.keycloak:keycloak-services
Moderate
2 months ago
Moby firewalld reload makes published container ports accessible from remote hosts
go
github.com/docker/docker
Moderate
2 months ago
Umbraco Delivery API allows for cached requests to be returned with an invalid API key
nuget
Umbraco.Cms.Api.Delivery
Moderate
2 months ago
Memos has Cross-Site Scripting (XSS) Vulnerability in Image URLs
go
github.com/usememos/memos
Moderate
2 months ago
copyparty has DOM-Based XSS vulnerability when displaying multimedia metadata
pypi
copyparty
Moderate
2 months ago
Opencast still publishes global system account credentials
maven
org.opencastproject:opencast-publication-service-oaipmh-remote, org.opencastproject:opencast-kernel, org.opencastproject:opencast-ingest-service-impl, org.opencastproject:opencast-common
Moderate
2 months ago
Assemblyline 4 service client vulnerable to Arbitrary Write through path traversal in Client code
pypi
assemblyline-service-client
Moderate
2 months ago
Calibre Web and Autocaliweb have OS Command Injection vulnerability
pypi
calibreweb
Moderate
2 months ago
Harbor repository description page has Cross-site Scripting vulnerability
go
github.com/goharbor/harbor
Moderate
2 months ago
Femanager extension for TYPO3 allows Insecure Direct Object Reference
packagist
in2code/femanager
Moderate
2 months ago
Powermail extension for TYPO3 allows Insecure Direct Object Reference
packagist
in2code/powermail
Moderate
2 months ago
HAX CMS application pages vulnerable to clickjacking
packagist, npm
elmsln/haxcms, @haxtheweb/haxcms-nodejs
Moderate
2 months ago
Starlette has possible denial-of-service vector when parsing large files in multipart forms
pypi
starlette
Moderate
2 months ago
Apache Jena allows users with administrator access to create databases files outside the files area of the Fuseki server
maven
org.apache.jena:jena-fuseki
Moderate
3 months ago
melange's world-writable permissions expose SBOM files to potential image tampering
go
chainguard.dev/melange
Moderate
3 months ago
Filemanager is vulnerable to Relative Path Traversal through filemanager.php
packagist
simogeo/filemanager
Moderate
3 months ago
Mattermost Path Traversal vulnerability
go
github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago
Mattermost Missing Authentication for Critical Function
go
github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago
OpenZeppelin Contracts Bytes's lastIndexOf function with position argument performs out-of-bound memory access on empty buffers
npm
@openzeppelin/contracts-upgradeable, @openzeppelin/contracts
Filter by Severity
Filter by Ecosystem
maven
3,253
packagist
2,968
pypi
2,034
npm
1,385
go
1,298
nuget
530
cargo
421
rubygems
419
hex
16
swift
11
actions
8
pub
2
Filter by Package
moodle/moodle
306
tensorflow
200
tensorflow-cpu
190
tensorflow-gpu
187
magento/community-edition
151
org.jenkins-ci.main:jenkins-core
148
typo3/cms
126
com.liferay.portal:release.portal.bom
105
org.apache.tomcat:tomcat
91
pimcore/pimcore
87
github.com/mattermost/mattermost/server/v8
82
com.liferay.portal:release.dxp.bom
81
microweber/microweber
72
typo3/cms-core
72
silverstripe/framework
66
phpmyadmin/phpmyadmin
56
dolibarr/dolibarr
55
drupal/core
51
github.com/usememos/memos
50
thorsten/phpmyfaq
47
concrete5/concrete5
46
magento/project-community-edition
46
actionpack
45
apache-superset
45
Django
44
apache-airflow
44
librenms/librenms
43
drupal/drupal
38
Plone
35
picklescan
34
showdoc/showdoc
34
org.elasticsearch:elasticsearch
33
mantisbt/mantisbt
33
org.keycloak:keycloak-core
32
github.com/grafana/grafana
31
craftcms/cms
31
github.com/mattermost/mattermost-server/v6
30
nova
29
github.com/mattermost/mattermost-server
29
symfony/symfony
28
moin
27
mautic/core
27
intelliants/subrion
27
snipe/snipe-it
27
baserproject/basercms
26
ansible
25
k8s.io/kubernetes
24
directus
23
shopware/platform
23
github.com/answerdev/answer
21
org.keycloak:keycloak-services
21
github.com/hashicorp/vault
21
nilsteampassnet/teampass
21
gradio
20
mediawiki/core
20
grumpydictator/firefly-iii
20
froxlor/froxlor
20
shopware/shopware
19
org.apache.struts:struts2-core
19
github.com/cilium/cilium
19
matrix-synapse
19
remdex/livehelperchat
18
plone
18
shopware/core
17
DotNetNuke.Core
17
getkirby/cms
17
salt
17
contao/core-bundle
17
github.com/argoproj/argo-cd/v2
17
zendframework/zendframework1
16
rdiffweb
16
prestashop/prestashop
16
org.apache.jspwiki:jspwiki-main
15
rack
15
yetiforce/yetiforce-crm
15
vyper
15
io.undertow:undertow-core
15
github.com/hashicorp/nomad
15
org.opencms:opencms-core
15
github.com/docker/docker
15
github.com/hashicorp/consul
14
tinymce
14
puppet
14
glance
14
org.apache.tomcat.embed:tomcat-embed-core
14
django
14
org.xwiki.platform:xwiki-platform-oldcore
14
nokogiri
13
com.jfinal:jfinal
13
github.com/openfga/openfga
13
forkcms/forkcms
13
tribalsystems/zenario
13
github.com/goharbor/harbor
13
org.springframework.security:spring-security-core
13
keystone
13
com.thoughtworks.xstream:xstream
13
wallabag/wallabag
12
typo3/cms-backend
12
helm.sh/helm/v3
12
next
12
transformers
12
simplesamlphp/simplesamlphp
12
roundup
12
lavalite/cms
11
@openzeppelin/contracts
11
ghost
11
feehi/feehicms
11
getgrav/grav
11
ec-cube/ec-cube
11
org.eclipse.jetty:jetty-server
11
github.com/traefik/traefik/v2
11
@openzeppelin/contracts-upgradeable
11
github.com/argoproj/argo-cd
11
laravel/framework
11
github.com/containerd/containerd
11
genix/cms
11
ckeditor4
11
tinymce/tinymce
11
activesupport
11
org.bouncycastle:bcprov-jdk15on
11
TinyMCE
11
surrealdb
10
vllm
10
org.apache.tomcat:tomcat-coyote
10
aiohttp
10
github.com/greenpau/caddy-security
10
fat_free_crm
10
zendframework/zendframework
10
org.springframework:spring-core
10
notebook
10
opencart/opencart
10
github.com/ethereum/go-ethereum
10
org.apache.nifi:nifi
10
org.keycloak:keycloak-parent
10
silverstripe/cms
10
org.apache.jspwiki:jspwiki-war
10
PaddlePaddle
10
com.vaadin:vaadin-bom
10
electron
10
OctoPrint
10
com.liferay.portal:com.liferay.portal.impl
10
vite
10
bolt/bolt
10
joplin
10
francoisjacquet/rosariosis
10
org.apache.solr:solr-core
10
pimcore/admin-ui-classic-bundle
9
contao/contao
9
angular
9
publify_core
9
org.mortbay.jetty:jetty
9
phpoffice/phpspreadsheet
9
github.com/rancher/rancher
9
open-webui
9
calibreweb
9
urllib3
9
org.jenkins-ci.plugins:git
9
code.gitea.io/gitea
9
wasmtime
9
org.igniterealtime.openfire:parent
9
swagger-ui
9
rubygems-update
9
org.jenkins-ci.plugins:script-security
9
horizon
9
org.apache.activemq:activemq-client
9
pyftpdlib
9
org.opencrx:opencrx-core-models
9
gogs.io/gogs
9
cakephp/cakephp
9
github.com/mattermost/mattermost-plugin-confluence
8
github.com/kubeedge/kubeedge
8
opencv-contrib-python
8
impresscms/impresscms
8
sulu/sulu
8
github.com/traefik/traefik/v3
8
centreon/centreon
8
org.apache.archiva:archiva
8
mlflow
8
phpbb/phpbb
8
org.opensearch.plugin:opensearch-security
8
modoboa
8
camaleon_cms
8
pyload-ng
8
github.com/cri-o/cri-o
8
parse-server
8
org.webjars:bootstrap
8
activerecord
8
org.apache.tomcat:tomcat-catalina
8
phpmyfaq/phpmyfaq
8
org.apache.ranger:ranger
8
onionshare-cli
8
editor.md
8
opencv-python
8
neutron
8
alextselegidis/easyappointments
8
org.jenkins-ci.plugins:subversion
8
sylius/sylius
8
rails-html-sanitizer
8
Microsoft.ChakraCore
8
org.jenkins-ci.plugins:electricflow
8
Filter by Repository
https://github.com/tensorflow/tensorflow
200
https://github.com/moodle/moodle
186
https://github.com/liferay/liferay-portal
115
https://github.com/jenkinsci/jenkins
109
https://github.com/pimcore/pimcore
85
https://github.com/TYPO3/typo3
64
https://github.com/microweber/microweber
63
https://github.com/apache/tomcat
62
https://github.com/xwiki/xwiki-platform
50
https://github.com/silverstripe/silverstripe-framework
50
https://github.com/django/django
50
https://github.com/usememos/memos
50
https://github.com/rails/rails
46
https://github.com/thorsten/phpmyfaq
45
https://github.com/apache/airflow
43
https://github.com/keycloak/keycloak
42
https://github.com/kubernetes/kubernetes
40
https://github.com/librenms/librenms
40
https://github.com/mmaitre314/picklescan
34
https://github.com/star7th/showdoc
32
https://github.com/mantisbt/mantisbt
32
https://github.com/concretecms/concretecms
28
https://github.com/symfony/symfony
27
https://github.com/grafana/grafana
27
https://github.com/mautic/mautic
27
https://github.com/phpmyadmin/phpmyadmin
26
https://github.com/craftcms/cms
26
https://github.com/spring-projects/spring-framework
26
https://github.com/ansible/ansible
26
https://github.com/directus/directus
24
https://github.com/argoproj/argo-cd
24
https://github.com/mattermost/mattermost
24
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/Dolibarr/dolibarr
22
https://github.com/answerdev/answer
21
https://github.com/shopware/shopware
21
https://github.com/apache/activemq
20
https://github.com/firefly-iii/firefly-iii
20
https://github.com/snipe/snipe-it
20
https://github.com/plone/Products.CMFPlone
20
https://github.com/magento/magento2
20
https://github.com/cilium/cilium
19
https://github.com/openstack/nova
18
https://github.com/livehelperchat/livehelperchat
18
https://github.com/contao/contao
18
https://github.com/apache/struts
17
https://github.com/shopware/platform
17
https://github.com/gradio-app/gradio
16
https://github.com/ikus060/rdiffweb
16
https://github.com/matrix-org/synapse
16
https://github.com/apache/cxf
15
https://github.com/vyperlang/vyper
15
https://github.com/getkirby/kirby
15
https://github.com/CVEProject/cvelist
15
https://github.com/netty/netty
15
https://github.com/geoserver/geoserver
14
https://github.com/OpenNMS/opennms
14
https://github.com/saltstack/salt
14
https://github.com/TYPO3/TYPO3.CMS
14
https://github.com/tinymce/tinymce
14
https://github.com/froxlor/froxlor
14
https://github.com/yetiforcecompany/yetiforcecrm
14
https://github.com/x-stream/xstream
14
https://github.com/moby/moby
14
https://github.com/baserproject/basercms
14
https://github.com/PaddlePaddle/Paddle
14
https://github.com/go-gitea/gitea
13
https://github.com/nilsteampassnet/TeamPass
13
https://github.com/goharbor/harbor
13
https://github.com/openfga/openfga
13
https://github.com/octobercms/october
13
https://github.com/PrestaShop/PrestaShop
13
https://github.com/apache/nifi
13
https://github.com/containerd/containerd
12
https://github.com/rack/rack
12
https://github.com/helm/helm
12
https://github.com/huggingface/transformers
12
https://github.com/TYPO3-CMS/core
12
https://github.com/bcgit/bc-java
12
https://github.com/traefik/traefik
12
https://github.com/ckeditor/ckeditor4
11
https://github.com/vaadin/platform
11
https://github.com/openstack/keystone
11
https://github.com/OpenZeppelin/openzeppelin-contracts
11
https://github.com/surrealdb/surrealdb
11
https://github.com/electron/electron
11
https://github.com/forkcms/forkcms
11
https://github.com/ethereum/go-ethereum
11
https://github.com/apache/zeppelin
11
https://github.com/laravel/framework
11
https://github.com/github/advisory-database
11
https://github.com/strapi/strapi
11
https://github.com/intelliants/subrion
11
https://github.com/wallabag/wallabag
10
https://github.com/backstage/backstage
10
https://github.com/simplesamlphp/simplesamlphp
10
https://github.com/greenpau/caddy-security
10
https://github.com/bytecodealliance/wasmtime
10
https://github.com/vercel/next.js
10
https://github.com/decidim/decidim
10
https://github.com/laurent22/joplin
10
https://github.com/aio-libs/aiohttp
10
https://github.com/TryGhost/Ghost
10
https://github.com/hashicorp/consul
10
https://github.com/PHPOffice/PhpSpreadsheet
10
https://github.com/vitejs/vite
10
https://github.com/liufee/cms
10
https://github.com/urllib3/urllib3
9
https://github.com/thorsten/phpMyFAQ
9
https://github.com/dnnsoftware/Dnn.Platform
9
https://github.com/vllm-project/vllm
9
https://github.com/rancher/rancher
9
https://github.com/alkacon/opencms-core
9
https://github.com/puppetlabs/puppet
9
https://github.com/pimcore/admin-ui-classic-bundle
9
https://github.com/publify/publify
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/jquery/jquery
9
https://github.com/jenkinsci/git-plugin
9
https://github.com/dpgaspar/Flask-AppBuilder
9
https://github.com/sparklemotion/nokogiri
8
https://github.com/rubygems/rubygems
8
https://github.com/dolibarr/dolibarr
8
https://github.com/pyload/pyload
8
https://github.com/sulu/sulu
8
https://github.com/dotnet/runtime
8
https://github.com/eclipse/jetty.project
8
https://github.com/swagger-api/swagger-ui
8
https://github.com/rails/rails-html-sanitizer
8
https://github.com/zendframework/zendframework
8
https://github.com/OctoPrint/OctoPrint
8
https://github.com/openstack/glance
8
https://github.com/hashicorp/nomad
8
https://github.com/nilsteampassnet/teampass
8
https://github.com/modoboa/modoboa
8
https://github.com/onionshare/onionshare
8
https://github.com/pandao/editor.md
8
https://github.com/gogs/gogs
8
https://github.com/LavaLite/cms
8
https://github.com/opencast/opencast
8
https://github.com/opensearch-project/security
8
https://github.com/kubeedge/kubeedge
8
https://github.com/apache/superset
8
https://github.com/denoland/deno
8
https://github.com/parse-community/parse-server
8
https://github.com/getgrav/grav
8
https://github.com/scrapy/scrapy
7
https://github.com/containers/podman
7
https://github.com/twbs/bootstrap
7
https://github.com/matrix-org/matrix-rust-sdk
7
https://github.com/google/fscrypt
7
https://github.com/undertow-io/undertow
7
https://github.com/MobSF/Mobile-Security-Framework-MobSF
7
https://github.com/croogo/croogo
7
https://github.com/modxcms/revolution
7
https://github.com/dragonflyoss/dragonfly
7
https://github.com/nocodb/nocodb
7
https://github.com/jupyter/notebook
7
https://github.com/kevinpapst/kimai2
7
https://github.com/zitadel/zitadel
7
https://github.com/python-pillow/Pillow
7
https://github.com/jeecgboot/jeecg-boot
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/Sylius/Sylius
7
https://github.com/n8n-io/n8n
7
https://github.com/Leantime/leantime
7
https://github.com/vega/vega
7
https://github.com/hashicorp/vault
7
https://github.com/igniterealtime/Openfire
7
https://github.com/nahsra/antisamy
7
https://github.com/openstack/horizon
7
https://github.com/janeczku/calibre-web
7
https://github.com/jenkinsci/blueocean-plugin
7
https://github.com/opencv/opencv
7
https://github.com/opencontainers/runc
7
https://github.com/chakra-core/ChakraCore
7
https://github.com/vaadin/flow
7
https://github.com/d4wner/Vulnerabilities-Report
6
https://github.com/pmmp/PocketMine-MP
6
https://github.com/louislam/uptime-kuma
6
https://github.com/ckan/ckan
6
https://github.com/zenml-io/zenml
6
https://github.com/jenkinsci/subversion-plugin
6
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
6
https://github.com/FlowiseAI/Flowise
6
https://github.com/stacklok/minder
6
https://github.com/jenkinsci/fortify-on-demand-uploader-plugin
6
https://github.com/nodejs/undici
6
https://github.com/jenkinsci/configuration-as-code-plugin
6
https://github.com/drupal/core
6
https://github.com/1Panel-dev/1Panel
6
https://github.com/cui2shark/security
6
https://github.com/psf/requests
6
https://github.com/yiisoft/yii2
6
https://github.com/run-llama/llama_index
6
https://github.com/matrix-org/matrix-js-sdk
6
https://github.com/tecnickcom/TCPDF
6
https://github.com/giampaolo/pyftpdlib
6
https://github.com/wagtail/wagtail
6