Browse Security Advisories
Moderate Security Advisories for github.com/argoproj/argo-cd Clear Filters
Moderate
3 months ago
DiracX-Web is vulnerable to attack through an Open Redirect on its login page
npm
@dirac-grid/diracx-web-components
Moderate
3 months ago
Grafana's insecure DingDing Alert integration exposes sensitive information
go
github.com/grafana/grafana
Moderate
3 months ago
vue-i18n's escapeParameterHtml does not prevent DOM-based XSS through its tag attributes
npm
petite-vue-i18n, @intlify/vue-i18n-core, @intlify/core-base, @intlify/core, vue-i18n
Moderate
3 months ago
Eclipse GlassFish is vulnerable to Stored XSS attacks through its Administration Console
maven
org.glassfish.main.admingui:console-common
Moderate
3 months ago
Eclipse GlassFish is vulnerable to Stored XSS attacks through configuration file modifications
maven
org.glassfish.main.admingui:console-common
Moderate
3 months ago
Eclipse GlassFish is vulnerable to Reflected XSS attacks through its Administration Console
maven
org.glassfish.main.admingui:console-cluster-plugin, org.glassfish.main.admingui:console-common
Moderate
3 months ago
Eclipse GlassFish is vulnerable to Login Brute Force attacks through unlimited failed login attempts
maven
org.glassfish.main.admingui:console-common
Moderate
3 months ago
Eclipse GlassFish is vulnerable to Stored XSS attacks through its Administration Console
maven
org.glassfish.main.admingui:console-cluster-plugin
Moderate
3 months ago
Reactor Netty HTTP is vulnerable to credential leaks during chained redirects
maven
io.projectreactor.netty:reactor-netty-http
Moderate
3 months ago
DSpace is vulnerable to Path Traversal attacks when importing packages using Simple Archive Format
maven
org.dspace:dspace-api
Moderate
3 months ago
DSpace is vulnerable to XML External Entity injection during archive imports
maven
org.dspace:dspace-api
Moderate
3 months ago
Directus' insufficient permission checks can enable unauthenticated users to manually trigger Flows
npm
directus
Moderate
3 months ago
Measured is vulnerable to Path Traversal attacks during class initialization
rubygems
measured
Moderate
3 months ago
Apache CXF is vulnerable to DoS attacks as entire files are read into memory and logged
maven
org.apache.cxf:cxf-core
Moderate
3 months ago
Directus tokens are not redacted in flow logs, exposing session credentials to all admin
npm
directus
Moderate
3 months ago
Directus is vulnerable to sensitive data exposure as user data is not being redacted when logged
npm
directus
Moderate
3 months ago
resolv vulnerable to DoS via insufficient DNS domain name length validation
rubygems
resolv
Moderate
3 months ago
py-libp2p is vulnerable to DoS attacks through use of large RSA keys
pypi
libp2p
Moderate
3 months ago
Roundup is vulnerable to XSS through interactions between URLs and issue tracker templates
pypi
roundup
Moderate
3 months ago
phpThumb is vulnerable to Command Injection through its gif_outputAsJpeg function
packagist
james-heinrich/phpthumb
Moderate
3 months ago
Apache Commons Lang is vulnerable to Uncontrolled Recursion when processing long inputs
maven
commons-lang:commons-lang, org.apache.commons:commons-lang3
Moderate
3 months ago
Transformers is vulnerable to ReDoS attack through its DonutProcessor class
pypi
transformers
Moderate
3 months ago
Nimbus JOSE + JWT is vulnerable to DoS attacks when processing deeply nested JSON
maven
com.nimbusds:nimbus-jose-jwt
Moderate
3 months ago
Apache Tomcat Coyote vulnerable to Denial of Service via excessive HTTP/2 streams
maven
org.apache.tomcat:tomcat-coyote
Moderate
3 months ago
Apache Tomcat Utilities is vulnerable to resource exhaustion when using the APR/Native connector
maven
org.apache.tomcat:tomcat-util
Moderate
3 months ago
Apache Tomcat Catalina is vulnerable to DoS attack through bypassing of size limits
maven
org.apache.tomcat:tomcat-catalina
Moderate
3 months ago
@pdfme/common vulnerable to to XSS and Prototype Pollution through its expression evaluation
npm
@pdfme/common
Moderate
3 months ago
Matrix Rust SDK vulnerable to SQL Injection through its EventCache implementation
cargo
matrix-sdk-sqlite, matrix-sdk
Moderate
3 months ago
LlamaIndex vulnerable to data loss through hash collisions in its DocugamiReader class
pypi
llama-index-readers-docugami, llama-index
Moderate
3 months ago
Jenkins Applitools Eyes Plugin vulnerability does not mask API keys on its job configuration form
maven
org.jenkins-ci.plugins:applitools-eyes
Moderate
3 months ago
Jenkins Xooa Plugin vulnerability exposes unencrypted tokens to authenticated users
maven
io.jenkins.plugins:xooa
Moderate
3 months ago
Jenkins VAddy Plugin vulnerability exposes plaintext keys on its job configuration form
maven
org.jenkins-ci.plugins:vaddy-plugin
Moderate
3 months ago
Jenkins Applitools Eyes Plugin vulnerability exposes unencrypted keys to certain authenticated users
maven
org.jenkins-ci.plugins:applitools-eyes
Moderate
3 months ago
Jenkins Xooa Plugin vulnerability does not mask its Xooa Deployment Token
maven
io.jenkins.plugins:xooa
Moderate
3 months ago
Jenkins Warrior Framework Plugin vulnerability exposes unencrypted passwords to certain authenticated users
maven
org.jenkins-ci.plugins:warrior
Moderate
3 months ago
Jenkins QMetry Test Management Plugin vulnerability exposes API keys
maven
org.jenkins-ci.plugins:qmetry-test-management
Moderate
3 months ago
Jenkins ReadyAPI Functional Testing Plugin vulnerability stores unencrypted authentication credentials
maven
org.jenkins-ci.plugins:soapui-pro-functional-testing
Moderate
3 months ago
Jenkins IFTTT Build Notifier Plugin vulnerability exposes IFTTT Maker Channel Keys
maven
org.jenkins-ci.plugins:ifttt-build-notifier
Moderate
3 months ago
Jenkins QMetry Test Management Plugin stores unencrypted API keys
maven
org.jenkins-ci.plugins:qmetry-test-management
Moderate
3 months ago
Jenkins Dead Man's Snitch Plugin vulnerability stores tokens in plain text
maven
org.jenkins-ci.plugins:deadmanssnitch
Moderate
3 months ago
Jenkins Dead Man's Snitch Plugin vulnerability does not mask tokens
maven
org.jenkins-ci.plugins:deadmanssnitch
Moderate
3 months ago
Jenkins VAddy Plugin vulnerability exposes unencrypted keys to certain authenticated users
maven
org.jenkins-ci.plugins:vaddy-plugin
Moderate
3 months ago
Jenkins IBM Cloud DevOps Plugin vulnerability exposes SonarQube authentication tokens
maven
com.ibm.devops:ibm-cloud-devops
Moderate
3 months ago
Jenkins Nouvola DiveCloud Plugin vulnerability stores unencrypted credentials
maven
org.jenkins-ci.plugins:nouvola-divecloud
Moderate
3 months ago
Jenkins Apica Loadtest Plugin vulnerability exposes authentication tokens
maven
com.apica:ApicaLoadtest
Moderate
3 months ago
Jenkins Apica Loadtest Plugin vulnerability exposes authentication tokens
maven
com.apica:ApicaLoadtest
Moderate
3 months ago
Jenkins Kryptowire Plugin vulnerability stores unencrypted Kryptowire API key
maven
io.jenkins.plugins:kryptowire
Moderate
3 months ago
Jenkins Statistics Gatherer Plugin does not mask AWS Secret Key
maven
org.jenkins.plugins.statistics.gatherer:statistics-gatherer
Moderate
3 months ago
Jenkins Sensedia API Platform Plugin vulnerability exposes unencrypted tokens in its global configuration file
maven
org.jenkins-ci.plugins:sensedia-api-platform
Moderate
3 months ago
Jenkins Nouvola DiveCloud Plugin vulnerability does not mask keys on its job configuration form
maven
org.jenkins-ci.plugins:nouvola-divecloud
Moderate
3 months ago
Jenkins ReadyAPI Functional Testing Plugin vulnerability exposes secrets
maven
org.jenkins-ci.plugins:soapui-pro-functional-testing
Moderate
3 months ago
Jenkins Sensedia API Platform Plugin vulnerability exposes unencrypted tokens
maven
org.jenkins-ci.plugins:sensedia-api-platform
Moderate
3 months ago
Jenkins Aqua Security Scanner Plugin vulnerability exposes scanner tokens
maven
org.jenkins-ci.plugins:aqua-security-scanner
Moderate
3 months ago
Jenkins HTML Publisher Plugin vulnerability displays controller file system information in its logs
maven
org.jenkins-ci.plugins:htmlpublisher
Moderate
3 months ago
Jenkins Git Parameter Plugin vulnerable to code injection due to inexhaustive parameter check
maven
org.jenkins-ci.tools:git-parameter
Moderate
3 months ago
Jenkins Statistics Gatherer Plugin vulnerability exposes AWS Secret Key
maven
org.jenkins.plugins.statistics.gatherer:statistics-gatherer
Moderate
3 months ago
Jenkins Credentials Binding Plugin vulnerability can expose sensitive information in logger messages
maven
org.jenkins-ci.plugins:credentials-binding
Moderate
3 months ago
Juju vulnerable to sensitive log retrieval via authenticated endpoint without authorization
go
github.com/juju/juju
Moderate
3 months ago
Cloudflare Vite plugin exposes secrets over the built-in dev server
npm
@cloudflare/vite-plugin
Moderate
3 months ago
fastapi-guard is vulnerable to ReDoS through inefficient regex
pypi
fastapi-guard
Moderate
3 months ago
Dagster vulnerable to Path Traversal attack through its /logs endpoint
pypi
dagster
Moderate
3 months ago
LlamaIndex vulnerability in its ObsidianReader class can lead to Path Traversal exploit
pypi
llama-index-readers-obsidian
Moderate
3 months ago
LlamaIndex vulnerable to DoS attack through uncontrolled recursive JSON parsing
pypi
llama-index-core
Moderate
3 months ago
Transformers vulnerable to ReDoS attack through its SETTING_RE variable
pypi
transformers
Moderate
3 months ago
LlamaIndex vulnerability in ArxivReader class can cause MD5 hash collisions
pypi
llama-index-readers-papers
Moderate
3 months ago
Transformers's ReDoS vulnerability in get_configuration_file can lead to catastrophic backtracking
pypi
transformers
Moderate
3 months ago
Transformers vulnerable to ReDoS attack through its get_imports() function
pypi
transformers
Moderate
3 months ago
LlamaIndex has Incomplete Documentation of Program Execution related to JsonPickleSerializer component
pypi
llama-index-core
Moderate
3 months ago
Rust Web Push is vulnerable to a DoS attack via a large integer in a Content-Length header
cargo
web-push
Moderate
3 months ago
Zipkin Server vulnerable to Insecure Resource Initialization through its /heapdump endpoint
maven
io.zipkin:zipkin-server
Moderate
3 months ago
Cockpit - Content Platform vulnerable to XSS through name or email argument names
packagist
cockpit-hq/cockpit
Moderate
3 months ago
n8n is vulnerable to Improper Authorization through its `/stop` endpoint
npm
n8n
Moderate
3 months ago
tarteaucitron.js vulnerable to DOM Clobbering via document.currentScript
npm
tarteaucitronjs
Moderate
3 months ago
n8n Vulnerable to Denial of Service via Malformed Binary Data Requests
npm
n8n
Moderate
3 months ago
Microweber CMS API has authenticated local file inclusion vulnerability
packagist
microweber/microweber
Moderate
3 months ago
HashiCorp Vagrant has code injection vulnerability through default synced folders
rubygems
vagrant
Moderate
3 months ago
ethereum does not check transaction malleability for EIP-2930, EIP-1559 and EIP-7702 transactions
cargo
ethereum
Moderate
3 months ago
junit-platform-reporting can leak Git credentials through its OpenTestReportGeneratingListener
maven
org.junit.platform:junit-platform-reporting
Moderate
3 months ago
Mattermost Incorrect Authorization vulnerability
go
github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago
Mattermost Incorrect Authorization vulnerability
go
github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago
File Browser vulnerable to insecure password handling
go
github.com/filebrowser/filebrowser, github.com/filebrowser/filebrowser/v2
Moderate
3 months ago
File Browser allows sensitive data to be transferred in URL
go
github.com/filebrowser/filebrowser, github.com/filebrowser/filebrowser/v2
Moderate
3 months ago
akka-cluster-metrics uses Java serialization for cluster metrics
maven
com.typesafe.akka:akka-cluster-metrics_2.13, com.typesafe.akka:akka-cluster-metrics_3
Moderate
3 months ago
HKUDS LightRAG allows Path Traversal via function upload_to_input_dir
pypi
lightrag-hku
Moderate
3 months ago
mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data
go
github.com/go-viper/mapstructure/v2
Moderate
3 months ago
filebrowser Sets Insecure File Permissions
go
github.com/filebrowser/filebrowser, github.com/filebrowser/filebrowser/v2
Moderate
3 months ago
Infinispan CLI vulnerable to Generation of Error Message Containing Sensitive Information
maven
org.infinispan:infinispan-cli-client
Moderate
3 months ago
Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
rubygems
webrick
Moderate
3 months ago
OpenBao allows cancellation of root rekey and recovery rekey operations without authentication
go
github.com/openbao/openbao
Moderate
3 months ago
OpenBao Inserts Sensitive Information into Log File when processing malformed data
go
github.com/openbao/openbao/sdk/v2
Moderate
3 months ago
iOS Simulator MCP Command Injection allowed via exec API
npm
ios-simulator-mcp
Moderate
3 months ago
Moodle Session Fixation allows unauthenticated users to hijack sessions via sesskey parameter
packagist
moodle/moodle
Filter by Severity
Filter by Ecosystem
maven
3,249
packagist
2,963
pypi
2,035
npm
1,392
go
1,293
nuget
534
cargo
422
rubygems
421
hex
16
swift
11
actions
8
pub
3
Filter by Package
moodle/moodle
306
tensorflow
200
tensorflow-cpu
191
tensorflow-gpu
189
magento/community-edition
167
org.jenkins-ci.main:jenkins-core
148
typo3/cms
126
com.liferay.portal:release.portal.bom
104
org.apache.tomcat:tomcat
96
pimcore/pimcore
87
github.com/mattermost/mattermost/server/v8
83
com.liferay.portal:release.dxp.bom
80
microweber/microweber
72
typo3/cms-core
70
silverstripe/framework
67
phpmyadmin/phpmyadmin
56
dolibarr/dolibarr
55
github.com/usememos/memos
50
drupal/core
50
thorsten/phpmyfaq
47
concrete5/concrete5
46
apache-superset
45
actionpack
45
apache-airflow
44
librenms/librenms
43
Django
39
drupal/drupal
38
showdoc/showdoc
34
picklescan
34
mantisbt/mantisbt
33
org.elasticsearch:elasticsearch
33
org.keycloak:keycloak-core
32
craftcms/cms
31
github.com/grafana/grafana
31
symfony/symfony
30
magento/project-community-edition
30
github.com/mattermost/mattermost-server/v6
29
plone
29
nova
29
github.com/mattermost/mattermost-server
28
moin
27
snipe/snipe-it
27
intelliants/subrion
27
mautic/core
27
baserproject/basercms
26
ansible
25
Plone
24
k8s.io/kubernetes
24
shopware/platform
23
directus
23
github.com/hashicorp/vault
21
github.com/answerdev/answer
21
nilsteampassnet/teampass
21
org.keycloak:keycloak-services
21
gradio
20
froxlor/froxlor
20
django
20
mediawiki/core
20
grumpydictator/firefly-iii
20
matrix-synapse
19
org.apache.struts:struts2-core
19
shopware/shopware
19
github.com/cilium/cilium
19
remdex/livehelperchat
18
github.com/argoproj/argo-cd/v2
17
salt
17
contao/core-bundle
17
shopware/core
17
DotNetNuke.Core
17
getkirby/cms
17
prestashop/prestashop
16
zendframework/zendframework1
16
github.com/docker/docker
16
rdiffweb
16
github.com/hashicorp/nomad
15
io.undertow:undertow-core
15
rack
15
org.opencms:opencms-core
15
org.apache.jspwiki:jspwiki-main
15
vyper
15
yetiforce/yetiforce-crm
15
org.xwiki.platform:xwiki-platform-oldcore
14
glance
14
org.apache.tomcat.embed:tomcat-embed-core
14
puppet
14
github.com/hashicorp/consul
14
tinymce
14
github.com/goharbor/harbor
13
keystone
13
nokogiri
13
github.com/openfga/openfga
13
forkcms/forkcms
13
tribalsystems/zenario
13
com.jfinal:jfinal
13
com.thoughtworks.xstream:xstream
13
roundup
12
simplesamlphp/simplesamlphp
12
helm.sh/helm/v3
12
org.springframework.security:spring-security-core
12
transformers
12
typo3/cms-backend
12
next
12
wallabag/wallabag
12
ckeditor4
11
@openzeppelin/contracts-upgradeable
11
ec-cube/ec-cube
11
ghost
11
bootstrap
11
lavalite/cms
11
activesupport
11
@openzeppelin/contracts
11
github.com/traefik/traefik/v2
11
org.eclipse.jetty:jetty-server
11
github.com/argoproj/argo-cd
11
genix/cms
11
getgrav/grav
11
feehi/feehicms
11
github.com/containerd/containerd
11
TinyMCE
11
tinymce/tinymce
11
PaddlePaddle
10
surrealdb
10
github.com/ethereum/go-ethereum
10
org.bouncycastle:bcprov-jdk15on
10
phpoffice/phpspreadsheet
10
laravel/framework
10
aiohttp
10
org.keycloak:keycloak-parent
10
org.apache.jspwiki:jspwiki-war
10
notebook
10
org.springframework:spring-core
10
vite
10
com.liferay.portal:com.liferay.portal.impl
10
vllm
10
bolt/bolt
10
github.com/greenpau/caddy-security
10
electron
10
opencart/opencart
10
OctoPrint
10
joplin
10
org.apache.nifi:nifi
10
org.apache.solr:solr-core
10
francoisjacquet/rosariosis
10
fat_free_crm
10
com.vaadin:vaadin-bom
10
zendframework/zendframework
10
org.igniterealtime.openfire:parent
9
gogs.io/gogs
9
org.opencrx:opencrx-core-models
9
publify_core
9
calibreweb
9
urllib3
9
open-webui
9
rubygems-update
9
silverstripe/cms
9
github.com/rancher/rancher
9
angular
9
org.jenkins-ci.plugins:git
9
cakephp/cakephp
9
contao/contao
9
org.jenkins-ci.plugins:script-security
9
org.apache.activemq:activemq-client
9
horizon
9
wasmtime
9
code.gitea.io/gitea
9
pimcore/admin-ui-classic-bundle
9
org.mortbay.jetty:jetty
9
pyftpdlib
9
sulu/sulu
8
swagger-ui
8
sylius/sylius
8
pyload-ng
8
Microsoft.ChakraCore
8
modoboa
8
activerecord
8
editor.md
8
opencv-python
8
rails-html-sanitizer
8
org.jenkins-ci.plugins:subversion
8
parse-server
8
org.apache.ranger:ranger
8
phpbb/phpbb
8
org.apache.archiva:archiva
8
neutron
8
impresscms/impresscms
8
centreon/centreon
8
org.jenkins-ci.plugins:electricflow
8
opencv-contrib-python
8
mlflow
8
alextselegidis/easyappointments
8
org.opensearch.plugin:opensearch-security
8
github.com/traefik/traefik/v3
8
phpmyfaq/phpmyfaq
8
onionshare-cli
8
github.com/kubeedge/kubeedge
8
camaleon_cms
8
github.com/cri-o/cri-o
8
github.com/mattermost/mattermost-plugin-confluence
8
deno
7
cockpit-hq/cockpit
7
Filter by Repository
https://github.com/tensorflow/tensorflow
200
https://github.com/moodle/moodle
186
https://github.com/liferay/liferay-portal
115
https://github.com/jenkinsci/jenkins
109
https://github.com/pimcore/pimcore
85
https://github.com/TYPO3/typo3
64
https://github.com/microweber/microweber
63
https://github.com/apache/tomcat
62
https://github.com/xwiki/xwiki-platform
50
https://github.com/silverstripe/silverstripe-framework
50
https://github.com/django/django
50
https://github.com/usememos/memos
50
https://github.com/rails/rails
46
https://github.com/thorsten/phpmyfaq
45
https://github.com/apache/airflow
43
https://github.com/keycloak/keycloak
42
https://github.com/kubernetes/kubernetes
40
https://github.com/librenms/librenms
40
https://github.com/mmaitre314/picklescan
34
https://github.com/star7th/showdoc
32
https://github.com/mantisbt/mantisbt
32
https://github.com/concretecms/concretecms
28
https://github.com/symfony/symfony
27
https://github.com/grafana/grafana
27
https://github.com/mautic/mautic
27
https://github.com/phpmyadmin/phpmyadmin
26
https://github.com/craftcms/cms
26
https://github.com/spring-projects/spring-framework
26
https://github.com/ansible/ansible
26
https://github.com/directus/directus
24
https://github.com/argoproj/argo-cd
24
https://github.com/mattermost/mattermost
24
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/Dolibarr/dolibarr
22
https://github.com/answerdev/answer
21
https://github.com/shopware/shopware
21
https://github.com/apache/activemq
20
https://github.com/firefly-iii/firefly-iii
20
https://github.com/snipe/snipe-it
20
https://github.com/plone/Products.CMFPlone
20
https://github.com/magento/magento2
20
https://github.com/cilium/cilium
19
https://github.com/openstack/nova
18
https://github.com/livehelperchat/livehelperchat
18
https://github.com/contao/contao
18
https://github.com/apache/struts
17
https://github.com/shopware/platform
17
https://github.com/gradio-app/gradio
16
https://github.com/ikus060/rdiffweb
16
https://github.com/matrix-org/synapse
16
https://github.com/apache/cxf
15
https://github.com/vyperlang/vyper
15
https://github.com/getkirby/kirby
15
https://github.com/CVEProject/cvelist
15
https://github.com/netty/netty
15
https://github.com/geoserver/geoserver
14
https://github.com/OpenNMS/opennms
14
https://github.com/saltstack/salt
14
https://github.com/TYPO3/TYPO3.CMS
14
https://github.com/tinymce/tinymce
14
https://github.com/froxlor/froxlor
14
https://github.com/yetiforcecompany/yetiforcecrm
14
https://github.com/x-stream/xstream
14
https://github.com/moby/moby
14
https://github.com/baserproject/basercms
14
https://github.com/PaddlePaddle/Paddle
14
https://github.com/go-gitea/gitea
13
https://github.com/nilsteampassnet/TeamPass
13
https://github.com/goharbor/harbor
13
https://github.com/openfga/openfga
13
https://github.com/octobercms/october
13
https://github.com/PrestaShop/PrestaShop
13
https://github.com/apache/nifi
13
https://github.com/containerd/containerd
12
https://github.com/rack/rack
12
https://github.com/helm/helm
12
https://github.com/huggingface/transformers
12
https://github.com/TYPO3-CMS/core
12
https://github.com/bcgit/bc-java
12
https://github.com/traefik/traefik
12
https://github.com/ckeditor/ckeditor4
11
https://github.com/vaadin/platform
11
https://github.com/openstack/keystone
11
https://github.com/OpenZeppelin/openzeppelin-contracts
11
https://github.com/surrealdb/surrealdb
11
https://github.com/electron/electron
11
https://github.com/forkcms/forkcms
11
https://github.com/ethereum/go-ethereum
11
https://github.com/apache/zeppelin
11
https://github.com/laravel/framework
11
https://github.com/github/advisory-database
11
https://github.com/strapi/strapi
11
https://github.com/intelliants/subrion
11
https://github.com/wallabag/wallabag
10
https://github.com/backstage/backstage
10
https://github.com/simplesamlphp/simplesamlphp
10
https://github.com/greenpau/caddy-security
10
https://github.com/bytecodealliance/wasmtime
10
https://github.com/vercel/next.js
10
https://github.com/decidim/decidim
10
https://github.com/laurent22/joplin
10
https://github.com/aio-libs/aiohttp
10
https://github.com/TryGhost/Ghost
10
https://github.com/hashicorp/consul
10
https://github.com/PHPOffice/PhpSpreadsheet
10
https://github.com/vitejs/vite
10
https://github.com/liufee/cms
10
https://github.com/urllib3/urllib3
9
https://github.com/thorsten/phpMyFAQ
9
https://github.com/dnnsoftware/Dnn.Platform
9
https://github.com/vllm-project/vllm
9
https://github.com/rancher/rancher
9
https://github.com/alkacon/opencms-core
9
https://github.com/puppetlabs/puppet
9
https://github.com/pimcore/admin-ui-classic-bundle
9
https://github.com/publify/publify
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/jquery/jquery
9
https://github.com/jenkinsci/git-plugin
9
https://github.com/dpgaspar/Flask-AppBuilder
9
https://github.com/sparklemotion/nokogiri
8
https://github.com/rubygems/rubygems
8
https://github.com/dolibarr/dolibarr
8
https://github.com/pyload/pyload
8
https://github.com/sulu/sulu
8
https://github.com/dotnet/runtime
8
https://github.com/eclipse/jetty.project
8
https://github.com/swagger-api/swagger-ui
8
https://github.com/rails/rails-html-sanitizer
8
https://github.com/zendframework/zendframework
8
https://github.com/OctoPrint/OctoPrint
8
https://github.com/openstack/glance
8
https://github.com/hashicorp/nomad
8
https://github.com/nilsteampassnet/teampass
8
https://github.com/modoboa/modoboa
8
https://github.com/onionshare/onionshare
8
https://github.com/pandao/editor.md
8
https://github.com/gogs/gogs
8
https://github.com/LavaLite/cms
8
https://github.com/opencast/opencast
8
https://github.com/opensearch-project/security
8
https://github.com/kubeedge/kubeedge
8
https://github.com/apache/superset
8
https://github.com/denoland/deno
8
https://github.com/parse-community/parse-server
8
https://github.com/getgrav/grav
8
https://github.com/scrapy/scrapy
7
https://github.com/containers/podman
7
https://github.com/twbs/bootstrap
7
https://github.com/matrix-org/matrix-rust-sdk
7
https://github.com/google/fscrypt
7
https://github.com/undertow-io/undertow
7
https://github.com/MobSF/Mobile-Security-Framework-MobSF
7
https://github.com/croogo/croogo
7
https://github.com/modxcms/revolution
7
https://github.com/dragonflyoss/dragonfly
7
https://github.com/nocodb/nocodb
7
https://github.com/jupyter/notebook
7
https://github.com/kevinpapst/kimai2
7
https://github.com/zitadel/zitadel
7
https://github.com/python-pillow/Pillow
7
https://github.com/jeecgboot/jeecg-boot
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/Sylius/Sylius
7
https://github.com/n8n-io/n8n
7
https://github.com/Leantime/leantime
7
https://github.com/vega/vega
7
https://github.com/hashicorp/vault
7
https://github.com/igniterealtime/Openfire
7
https://github.com/nahsra/antisamy
7
https://github.com/openstack/horizon
7
https://github.com/janeczku/calibre-web
7
https://github.com/jenkinsci/blueocean-plugin
7
https://github.com/opencv/opencv
7
https://github.com/opencontainers/runc
7
https://github.com/chakra-core/ChakraCore
7
https://github.com/vaadin/flow
7
https://github.com/d4wner/Vulnerabilities-Report
6
https://github.com/pmmp/PocketMine-MP
6
https://github.com/louislam/uptime-kuma
6
https://github.com/ckan/ckan
6
https://github.com/zenml-io/zenml
6
https://github.com/jenkinsci/subversion-plugin
6
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
6
https://github.com/FlowiseAI/Flowise
6
https://github.com/stacklok/minder
6
https://github.com/jenkinsci/fortify-on-demand-uploader-plugin
6
https://github.com/nodejs/undici
6
https://github.com/jenkinsci/configuration-as-code-plugin
6
https://github.com/drupal/core
6
https://github.com/1Panel-dev/1Panel
6
https://github.com/cui2shark/security
6
https://github.com/psf/requests
6
https://github.com/yiisoft/yii2
6
https://github.com/run-llama/llama_index
6
https://github.com/matrix-org/matrix-js-sdk
6
https://github.com/tecnickcom/TCPDF
6
https://github.com/giampaolo/pyftpdlib
6
https://github.com/wagtail/wagtail
6