Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Browse Security Advisories

Critical Security Advisories for org.apache.struts:struts2-core Clear Filters

Critical
about 5 years ago

Malicious Package in json-serializer MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4ZnEteGg2di00bXJt

npm json-serializer
Critical
about 5 years ago

Malicious Package in jasmin MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTljcTQtbWhtci04NGdt

npm jasmin
Critical
about 5 years ago

Malicious Package in freshdom MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxbTItMjRxYy1jNHFn

npm freshdom
Critical
about 5 years ago

Malicious Package in impala MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkycHgtcTR3OC1ocnI1

npm impala
Critical
about 5 years ago

Malicious Package in dossier MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM4aDYtODlxMi1tZ3Y4

npm dossier
Critical
about 5 years ago

Malicious Package in dynamo-schema MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZwOGctNTNmdy1yOWYy

npm dynamo-schema
Critical
about 5 years ago

Malicious Package in css_transform_step MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyeDktNThtNy1ncjh3

npm css_transform_step
Critical
about 5 years ago

Malicious Package in css_transform_support MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1Y3AtaHBjOS04MzQ3

npm css_transform_support
Critical
about 5 years ago

Malicious Package in cordova-plugin-china-picker MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg5Z20tcXhoaC1yZjc1

npm cordova-plugin-china-picker
Critical
about 5 years ago

Malicious Package in coffee-project MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmdjYtcTV4di1maHB3

npm coffee-project
Critical
about 5 years ago

Malicious Package in codify MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJxNnctcnhmMy00d2M5

npm codify
Critical
about 5 years ago

Malicious Package in blingjs MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmYzYtNzl3di01aHB3

npm blingjs
Critical
about 5 years ago

Malicious Package in awesome_react_utility MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW0yNXEtZndnNC05djJw

npm awesome_react_utility
Critical
about 5 years ago

Malicious Package in another-date-range-picker MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThyeGctOWc2Zi12cTlw

npm another-date-range-picker
Critical
about 5 years ago

Malicious Package in another-date-picker MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJwNjItYzRybS1tcjcy

npm another-date-picker
Critical
about 5 years ago

Malicious Package in angular-material-sidenav-rnd MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFteGYtZnhxNy13NTlm

npm angular-material-sidenav-rnd
Critical
about 5 years ago

Malicious Package in angular-bmap MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc4aGctbXh2aC05aDU3

npm angular-bmap
Critical
about 5 years ago

Malicious Package in @impala/bmap MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM4MmMtOHBqdy02ODI5

npm @impala/bmap
Critical
about 5 years ago

pandora-doomsday is malware MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyOGYtbWg3dy02dzJ4

npm pandora-doomsday
Critical
about 5 years ago

npm-script-demo is malware MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMyMm0tcDM5ai1yNW0y

npm npm-script-demo
Critical
about 5 years ago

Command Injection in pidusage MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmcTktcmZwdi1qOHI4

npm pidusage
Critical
about 5 years ago

Command Execution in windows-cpu MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTYzbTQtZmhmMi1jbWY3

npm windows-cpu
Critical
about 5 years ago

Unsafe eval() in summit allows arbitrary code execution MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN3Y3AtNmM0OC1mbTdt

npm summit
Critical
about 5 years ago

Cross-Site Scripting in swagger-ui MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWczMzYtYzd3di04aHAz

npm swagger-ui
Critical
about 5 years ago

Cross-Site Scripting in swagger-ui MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAyMzktOTNmNy1oNnhm

npm swagger-ui
Critical
about 5 years ago

Cross-Site Scripting in swagger-ui MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdmNTkteDQ5cC12OG1x

npm swagger-ui
Critical
about 5 years ago

SQL Injection via GeoJSON in sequelize MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV2OWgtcTNnai1jMzJ4

npm sequelize
Critical
about 5 years ago

Command Injection in gm MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBqaDMtanY3dy05anBy

npm gm
Critical
about 5 years ago

Command Injection in ungit MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqZnItcDZocC1qcXF3

npm ungit
Critical
about 5 years ago

API Admin Auth Weakness in tomato MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl2eGMtZzJqeC1xajNw

npm tomato
Critical
about 5 years ago

Heap Based Buffer Overflow in libyaml MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW03NWgtY2docS1jOGg1

npm libyaml
Critical
about 5 years ago

Potential Command Injection in libnotify MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY4OTgtd3g5NC04anE4

npm libnotify
Critical
about 5 years ago

Potential Command Injection in hubot-scripts MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3Y2gtNzQ5Yy1ydjYz

npm hubot-scripts
Critical
about 5 years ago

Server secret was included in static assets and served to clients MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI1ODctN2poMi00cXIz

npm flood
Critical
about 5 years ago

Sandbox Breakout / Arbitrary Code Execution in safe-eval MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhycHEtcjM5OS13aGd3

npm safe-eval
Critical
about 5 years ago

Incorrect threshold signature computation in TUF MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB3cWYtOWg3ai03bXY4

pypi tuf
Critical
about 5 years ago

Remote Code Execution in SyliusResourceBundle MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg2bTctajRoMy05cmY1

packagist sylius/resource-bundle
Critical
about 5 years ago

Server-Side Request Forgery in ftp-srv MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp3MzctNWdxci1jZjlq

npm ftp-srv
Critical
about 5 years ago

Unintended read access in kramdown gem MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xbTItY2dwci1wNG02

rubygems kramdown
Critical
about 5 years ago

Prototype Pollution in express-fileupload MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl3Y2ctanJ3Zi04Z2c3

npm express-fileupload
Critical
about 5 years ago

Code execution in Spring Integration MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2cXItOXZxYy1wZ2M2

maven org.springframework.integration:spring-integration-core
Critical
about 5 years ago

Operation on a Resource after Expiration or Release in Jetty Server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgzcmgtbTd2cC0zNWYy

maven org.eclipse.jetty:jetty-server
Critical
about 5 years ago

False-positive validity for NFT1 genesis transactions MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZqbXItamZoNy14ZzNo

npm slp-validate
Critical
about 5 years ago

False-positive validity for NFT1 genesis transactions in SLPJS MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNjMnAtNGpoci14aGh4

npm slpjs
Critical
about 5 years ago

Potential Remote Code Execution in TYPO3 with mediace extension MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRoNDQtdzZmbS01NDhn

packagist friendsoftypo3/mediace
Critical
about 5 years ago

SQL Injection in Kylin MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4NWctOGhxMi04eDR3

maven org.apache.kylin:kylin-server-base
Critical
about 5 years ago

Command Injection in Kylin MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3ZnctZ3h4Mi1tbXYy

maven org.apache.kylin:kylin-server-base
Critical
about 5 years ago

Out-of-bounds read in Pillow MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzZnEtdzhxcS12ODho

pypi Pillow
Critical
about 5 years ago

Remote Code Execution in scratch-vm MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjOWotZmh2di04dnJm

npm scratch-vm
Critical
about 5 years ago

Command injection via Celery broker in Apache Airflow MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk3NnItcWZqai1jMjR3

pypi apache-airflow
Critical
about 5 years ago

Insecure default config of Celery worker in Apache Airflow MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlnMnctNWYzdi1tZm1t

pypi apache-airflow
Critical
about 5 years ago

XXE attack in Mapfish Print MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqdjYtZ3E3Ny0zbWp3

maven org.mapfish.print:print-standalone, org.mapfish.print:print-servlet, org.mapfish.print:print-lib
Critical
over 5 years ago

XML external entity injection in Terracotta Quartz Scheduler MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxY2YtYzI2ci14NXJm

maven org.quartz-scheduler:quartz
Critical
over 5 years ago

JHipster Kotlin using insecure source of randomness `RandomStringUtils` before v1.2.0 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozcmgtOHZ3cS13aDg0

npm generator-jhipster-kotlin
Critical
over 5 years ago

RSA PKCS#1 decryption vulnerability with prepending zeros in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4eHEtY2htcC02N2c0

npm jsrsasign
Critical
over 5 years ago

RSA-PSS signature validation vulnerability by prepending zeros in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzZ2gtNXI5OC1qNGgz

npm jsrsasign
Critical
over 5 years ago

Improper Privilege Management in Tomcat MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5aHctd2Y3eC1qcDlq

maven org.apache.tomcat.embed:tomcat-embed-core
Critical
over 5 years ago

Improper Input Validation in jackson-databind MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWYzajUtcm1tcC0zZmM1

maven com.fasterxml.jackson.core:jackson-databind
Critical
over 5 years ago

Uncontrolled Resource Consumption in Indy Node MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNndzQtbTV3Ny12ODlj

pypi indy-node
Critical
over 5 years ago

Command Injection in umount MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZxNDgtdmpxMi1td2Nq

npm umount
Critical
over 5 years ago

Prototype Pollution in ini-parser MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk2cjctbXJxZi1qaGNj

npm ini-parser
Critical
over 5 years ago

SQL Injection in Geocoder MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2NGotNnFwcC1jbXJy

rubygems geocoder
Critical
over 5 years ago

Validation Bypass in schema-inspector MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIyNGgtNjM0cC1tNzJ4

npm schema-inspector
Critical
over 5 years ago

Insecure Deserialization in Apache XML-RPC MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ2d3AtMzV3My14cGg4

maven org.apache.xmlrpc:xmlrpc
Critical
over 5 years ago

dom4j allows External Entities by default which might enable XXE attacks MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3ajMtbTNwNi1oajM4

maven dom4j:dom4j, org.dom4j:dom4j
Critical
over 5 years ago

File system access via H2 in Apache Ignite MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV3bTUtOHE0Mi1yaHhn

maven org.apache.ignite:ignite-core
Critical
over 5 years ago

Django Rest Framework jwt allows obtaining new token from notionally invalidated token MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwam0tcnAyZy0zcjRj

pypi drf-jwt
Critical
over 5 years ago

Arbitrary shell command execution in logkitty MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY4djgtNjg1OS1xeG00

npm logkitty
Critical
over 5 years ago

Exposure of Sensitive Information to an Unauthorized Actor in AEgir MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmY3YtNXdody03cGN3

npm aegir
Critical
over 5 years ago

ActiveSupport potentially unintended unmarshalling of user-provided objects in MemCacheStore and RedisCacheStore MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJwNjgtZjc0di05d2M2

rubygems activesupport
Critical
over 5 years ago

Apache Camel Netty enables Java deserialization by default MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3OXAtMzJteC1mamo5

maven org.apache.camel:camel-netty
Critical
over 5 years ago

Remote code execution in Apache Commons Configuration MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdxeDQtcHA3Ni12cnFo

maven org.apache.commons:commons-configuration2
Critical
over 5 years ago

jackson-databind mishandles the interaction between serialization gadgets and typing MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE5M2gtamM0OS03OGdn

maven com.fasterxml.jackson.core:jackson-databind
Critical
over 5 years ago

jackson-databind mishandles the interaction between serialization gadgets and typing MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA0M3gteGZqZi01amhy

maven com.fasterxml.jackson.core:jackson-databind
Critical
over 5 years ago

curlrequest allows execution of arbitrary commands MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW04eGotNXY3My0zaGg4

npm curlrequest
Critical
over 5 years ago

Arbitrary file write in actionpack-page_caching gem MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1nNXAtOTVtOS1ybWZw

rubygems actionpack-page_caching
Critical
over 5 years ago

False-negative validation results in MINT transactions with invalid baton MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3OTctNTd2Mi0zdzQ0

npm slp-validate
Critical
over 5 years ago

False-negative validation results in MINT transactions with invalid baton MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjODMtY3BmOS1xN2M2

npm slpjs
Critical
over 5 years ago

Potential Code Injection in Sprout Forms MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB4OHYtaHh4eC0ycmdo

packagist barrelstrength/sprout-forms, barrelstrength/sprout-base-email
Critical
over 5 years ago

Command Injection in hot-formula-parser MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjNzcteHhxNi00bWZm

npm hot-formula-parser
Critical
over 5 years ago

jackson-databind mishandles the interaction between serialization gadgets and typing MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVwMzQtNW02cC1wNThn

maven com.fasterxml.jackson.core:jackson-databind
Critical
over 5 years ago

Command Injection in npm-programmatic MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyNmgtMjR2ai1xd3hm

npm npm-programmatic
Critical
over 5 years ago

Negative charge in shopping cart in Shopizer MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc4cmMtcGd4cS14MmNq

maven com.shopizer:sm-core-model
Critical
over 5 years ago

Predictable password in Keycloak MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZwbXYtN3ByOS1jZ3Jq

maven org.keycloak:keycloak-core
Critical
over 5 years ago

OS Command Injection in devcert-sanscache MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRncDMtcDdwaC14Mmpy

npm devcert-sanscache
Critical
over 5 years ago

Improper Neutralization of CRLF Sequences in HTTP Headers in Jooby ('HTTP Response Splitting) MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2M3YtOTJ2Ni1tNDhq

maven io.jooby:jooby-netty
Critical
over 5 years ago

Improper Verification of Cryptographic Signature in Pure-Python ECDSA MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxeGotZjlyaC05Zmcy

pypi ecdsa
Critical
over 5 years ago

Improper Input Validation in Twisted MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5NnctbW1yZi0yaDZ2

pypi Twisted
Critical
over 5 years ago

HTTP Request Smuggling in Twisted MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA1eGgtdng4My1teGNq

pypi Twisted
Critical
over 5 years ago

Micronaut's HTTP client is vulnerable to HTTP Request Header Injection MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5NHAteHJoZy14M3dt

maven io.micronaut:micronaut-http-client
Critical
over 5 years ago

Local file inclusion vulnerability in http4s MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY2cTktZjdmZi1tbXg2

maven org.http4s:http4s-server_2.12
Critical
over 5 years ago

GitHub personal access token leaking into temporary EasyBuild (debug) logs MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ3eDYtd2M4Ny1ybWpt

pypi easybuild-framework
Critical
over 5 years ago

Potential buffer overflow in psd-tools MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIyanItdmM3ai1nNzYy

pypi psd-tools
Critical
over 5 years ago

python-docutils allows insecure usage of temporary files MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnNzUtNjkzOC13eDU4

pypi docutils
Critical
over 5 years ago

Insufficient Verification of Data Authenticity in python-keystoneclient MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl2ZzMtY2Y5Mi1oMmg3

pypi python-keystoneclient
Critical
over 5 years ago

Improper Authentication in requests-kerberos MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdoMzctMzd4dy01NGhy

pypi requests-kerberos
Critical
over 5 years ago

Remote code execution in PHPMailer MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVmMzctZ3h2aC0yM3Y2

packagist phpmailer/phpmailer
Critical
over 5 years ago

Remote code execution in PHPMailer MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRwYzMtOTZteC13d2M4

packagist phpmailer/phpmailer
Critical
over 5 years ago

Deserialization of Untrusted Data in jackson-databind MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3ODItcjMyOS0zcTY3

maven com.fasterxml.jackson.core:jackson-databind
Critical
over 5 years ago

Deserialization of Untrusted Data in jackson-databind MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd3dzctcDV3NC13cmZ2

maven com.fasterxml.jackson.core:jackson-databind

Filter by Severity

Moderate 10,455 High 8,234 Critical 3,382 Low 1,531

Filter by Ecosystem

npm 1,024 maven 931 packagist 558 pypi 520 go 323 cargo 168 rubygems 122 nuget 71 actions 9 hex 5 swift 2

Filter by Package

magento/community-edition 25 dolibarr/dolibarr 25 com.fasterxml.jackson.core:jackson-databind 24 net.mingsoft:ms-mcms 19 org.jenkins-ci.main:jenkins-core 19 com.liferay.portal:release.dxp.bom 18 com.liferay.portal:release.portal.bom 18 salt 17 moodle/moodle 16 magento/project-community-edition 16 topthink/framework 15 mlflow 14 Django 14 org.apache.dubbo:dubbo 13 drupal/core 13 org.xwiki.platform:xwiki-platform-oldcore 12 org.apache.struts:struts2-core 12 gogs.io/gogs 11 langchain 11 org.xwiki.platform:xwiki-platform-web-templates 10 drupal/drupal 10 vm2 10 phpmyadmin/phpmyadmin 10 apache-airflow 10 ansible 9 funadmin/funadmin 9 flowise 9 github.com/argoproj/argo-cd/v2 8 shopware/platform 8 rdiffweb 8 org.xwiki.platform:xwiki-platform-administration-ui 8 froxlor/froxlor 8 paddlepaddle 7 pyload-ng 7 studio-42/elfinder 7 sequelize 7 parse-server 7 github.com/argoproj/argo-cd 7 vllm 7 zendframework/zendframework1 7 rusqlite 7 github.com/rancher/rancher 7 tensorflow 6 org.jeecgframework.boot:jeecg-boot-common 6 thorsten/phpmyfaq 6 org.apache.shiro:shiro-core 6 craftcms/cms 6 github.com/answerdev/answer 6 github.com/hashicorp/vault 6 zendframework/zendframework 6 ezsystems/ezpublish-kernel 6 symfony/symfony 6 typo3/cms 6 org.apache.inlong:manager-pojo 6 aaptjs 6 mautic/core 6 nilsteampassnet/teampass 6 pillow 6 mercurial 6 centreon/centreon 5 ckb 5 prestashop/prestashop 5 github.com/grafana/grafana 5 org.jenkins-ci.plugins:script-security 5 steal 5 librenms/librenms 5 org.apache.openmeetings:openmeetings-parent 5 org.xwiki.platform:xwiki-platform-web 5 Microsoft.ChakraCore 5 executorch 5 github.com/mattermost/mattermost/server/v8 5 shopware/core 5 org.xwiki.commons:xwiki-commons-xml 5 bentoml 5 safe-eval 5 dompdf/dompdf 5 org.jeecgframework.boot:jeecg-boot-parent 5 code.gitea.io/gitea 5 tensorflow-gpu 5 adodb/adodb-php 5 dbgpt 5 tensorflow-cpu 5 nodebb 5 org.apache.solr:solr-core 4 apache-airflow-providers-apache-hive 4 nukeviet/nukeviet 4 org.xwiki.platform:xwiki-platform-search-ui 4 ai.h2o:h2o-core 4 org.apache.inlong:manager-service 4 ait-core 4 showdoc/showdoc 4 gradio 4 org.jeecgframework.boot:jeecg-boot-base-core 4 Pillow 4 tribalsystems/zenario 4 baserproject/basercms 4 cobbler 4 ruby-saml 4 org.apache.tomcat.embed:tomcat-embed-core 4 ray 4 feehi/cms 4 org.xwiki.platform:xwiki-platform-appwithinminutes-ui 4 realms-shim 4 openssl-src 4 org.cloudfoundry.identity:cloudfoundry-identity-server 4 net.opentsdb:opentsdb 4 swagger-ui 4 org.apache.tapestry:tapestry-core 4 org.xwiki.platform:xwiki-platform-flamingo-skin-resources 4 messagepack-rs 4 org.apache.tomcat:tomcat-catalina 4 hermes-engine 4 org.apache.kylin:kylin-server-base 4 h2o 4 github.com/usememos/memos 4 smallvec 4 shopware/shopware 4 safer-eval 4 langchain-experimental 4 calibreweb 4 simplesamlphp/simplesamlphp 4 contao/core-bundle 4 org.eclipse.jetty:jetty-server 4 org.apache.ignite:ignite-core 4 aim 4 contao/contao 4 mongoose 4 org.apache.activemq:activemq-client 4 nokogiri 4 github.com/pterodactyl/wings 3 org.apache.inlong:manager-web 3 phpmailer/phpmailer 3 modoboa 3 codeigniter/framework 3 agentscope 3 publify_core 3 github.com/dexidp/dex 3 github.com/cosmos/ibc-go/v2 3 namada-apps 3 strapi 3 github.com/cosmos/ibc-go/v7 3 ro.pippo:pippo-core 3 handlebars 3 org.apache.jmeter:ApacheJMeter 3 org.apache.dolphinscheduler:dolphinscheduler 3 apache-submarine 3 torchserve 3 com.alibaba:dubbo 3 github.com/beego/beego/v2 3 picklescan 3 actix-web 3 SQLAlchemy 3 org.xwiki.platform:xwiki-platform-icon-ui 3 com.hazelcast:hazelcast 3 xcb 3 github.com/gofiber/fiber/v2 3 xml-crypto 3 org.xwiki.platform:xwiki-platform-distribution-war 3 github.com/cosmos/ibc-go/v3 3 mitmproxy 3 codeigniter4/framework 3 org.zenframework.z8.dependencies.commons:log4j-1.2.17 3 vyper 3 jsrsasign 3 ibexa/core 3 pyyaml 3 log4j:log4j 3 elefant/cms 3 org.xwiki.platform:xwiki-platform-panels-ui 3 llama-index 3 com.jflyfox:jflyfox_jfinal 3 org.apache.any23:apache-any23 3 org.xwiki.platform:xwiki-platform-flamingo-theme-ui 3 PaddlePaddle 3 github.com/cosmos/ibc-go/v6 3 silverstripe/framework 3 github.com/IceWhaleTech/CasaOS 3 lmdb 3 impresscms/impresscms 3 dulwich 3 id-map 3 rubygems-update 3 io.dataease:dataease-plugin-common 3 github.com/cosmos/ibc-go/v5 3 facade/ignition 3 github.com/cosmos/ibc-go 3 ezsystems/ezplatform-kernel 3 francoisjacquet/rosariosis 3 slpjs 3 alextselegidis/easyappointments 3 codiad/codiad 3 org.apache.ozone:ozone-main 3 github.com/bnb-chain/tss-lib 3 org.keycloak:keycloak-core 3 org.jeecgframework.boot:jeecg-module-system 3 slp-validate 3 github.com/cosmos/ibc-go/v4 3 edu.stanford.nlp:stanford-corenlp 3 llama-index-core 3 browserify-shim 3

Filter by Repository

https://github.com/xwiki/xwiki-platform 100 https://github.com/FasterXML/jackson-databind 24 https://github.com/jenkinsci/jenkins 18 https://github.com/apache/airflow 16 https://github.com/django/django 15 https://github.com/Dolibarr/dolibarr 15 https://github.com/mlflow/mlflow 14 https://github.com/saltstack/salt 13 https://github.com/langchain-ai/langchain 12 https://github.com/argoproj/argo-cd 11 https://github.com/gogs/gogs 11 https://github.com/apache/inlong 10 https://github.com/ming-soft/MCMS 10 https://github.com/patriksimek/vm2 10 https://github.com/magento/magento2 10 https://github.com/python-pillow/Pillow 9 https://github.com/funadmin/funadmin 9 https://github.com/jeecgboot/jeecg-boot 9 https://github.com/PaddlePaddle/Paddle 9 https://github.com/top-think/framework 9 https://github.com/go-gitea/gitea 8 https://github.com/apache/struts 8 https://github.com/ansible/ansible 8 https://github.com/ikus060/rdiffweb 8 https://github.com/Studio-42/elFinder 7 https://github.com/parse-community/parse-server 7 https://github.com/pyload/pyload 7 https://github.com/rusqlite/rusqlite 7 https://github.com/sequelize/sequelize 7 https://github.com/apache/tomcat 7 https://github.com/rancher/rancher 7 https://github.com/symfony/symfony 7 https://github.com/run-llama/llama_index 7 https://github.com/FlowiseAI/Flowise 7 https://github.com/xwiki/xwiki-commons 6 https://github.com/shenzhim/aaptjs 6 https://github.com/liferay/liferay-portal 6 https://github.com/shopware/platform 6 https://github.com/dompdf/dompdf 6 https://github.com/answerdev/answer 6 https://github.com/thorsten/phpmyfaq 6 https://github.com/tensorflow/tensorflow 6 https://github.com/NodeBB/NodeBB 5 https://github.com/craftcms/cms 5 https://github.com/auth0/auth0-PHP 5 https://github.com/nervosnetwork/ckb 5 https://github.com/apache/activemq 5 https://github.com/froxlor/froxlor 5 https://github.com/PrestaShop/PrestaShop 5 https://github.com/SAML-Toolkits/ruby-saml 5 https://github.com/hacksparrow/safe-eval 5 https://github.com/spring-projects/spring-framework 5 https://github.com/ADOdb/ADOdb 5 https://github.com/pytorch/executorch 5 https://github.com/twisted/twisted 5 https://github.com/stealjs/steal 5 https://github.com/moodle/moodle 5 https://github.com/dromara/hutool 5 https://github.com/grafana/grafana 5 https://github.com/vllm-project/vllm 5 https://github.com/keycloak/keycloak 5 https://github.com/OpenTSDB/opentsdb 4 https://github.com/janeczku/calibre-web 4 https://github.com/pippo-java/pippo 4 https://github.com/liufee/cms 4 https://github.com/cobbler/cobbler 4 https://github.com/xwiki/xwiki-rendering 4 https://github.com/cloudfoundry/uaa 4 https://github.com/otake84/messagepack-rs 4 https://github.com/gradio-app/gradio 4 https://github.com/ezsystems/ezpublish-kernel 4 https://github.com/ray-project/ray 4 https://github.com/phpmyadmin/phpmyadmin 4 https://github.com/swagger-api/swagger-ui 4 https://github.com/usememos/memos 4 https://github.com/star7th/showdoc 4 https://github.com/dataease/dataease 4 https://github.com/contao/contao 4 https://github.com/bentoml/BentoML 4 https://github.com/CVEProject/cvelist 4 https://github.com/servo/rust-smallvec 4 https://github.com/hwchase17/langchain 4 https://github.com/nilsteampassnet/TeamPass 4 https://github.com/kubernetes/kubernetes 4 https://github.com/mautic/mautic 4 https://github.com/shopware/shopware 3 https://github.com/facade/ignition 3 https://github.com/mitmproxy/mitmproxy 3 https://github.com/TeamSeri0us/pocs 3 https://github.com/pimcore/pimcore 3 https://github.com/actix/actix-web 3 https://github.com/smarty-php/smarty 3 https://github.com/mmaitre314/picklescan 3 https://github.com/simplesamlphp/simplesamlphp 3 https://github.com/dexidp/dex 3 https://github.com/beego/beego 3 https://github.com/opencast/opencast 3 https://github.com/publify/publify 3 https://github.com/cosmos/ibc-go 3 https://github.com/thlorenz/browserify-shim 3 https://github.com/ezsystems/ezplatform-kernel 3 https://github.com/gofiber/fiber 3 https://github.com/centreon/centreon-archived 3 https://github.com/ImpressCMS/impresscms 3 https://github.com/ibexa/core 3 https://github.com/rubygems/rubygems.org 3 https://github.com/denoland/deno 3 https://github.com/geoserver/geoserver 3 https://github.com/simpleledger/slpjs 3 https://github.com/apache/shiro 3 https://github.com/baserproject/basercms 3 https://github.com/Automattic/mongoose 3 https://github.com/pgadmin-org/pgadmin4 3 https://github.com/feathersjs-ecosystem/feathers-sequelize 3 https://github.com/shopware5/shopware 3 https://github.com/node-saml/xml-crypto 3 https://github.com/octobercms/october 3 https://github.com/vyperlang/vyper 3 https://github.com/chaos-mesh/chaos-mesh 3 https://github.com/anoma/namada 3 https://github.com/pterodactyl/wings 3 https://github.com/codeigniter4/CodeIgniter4 3 https://github.com/crewjam/saml 3 https://github.com/github/securitylab 3 https://github.com/TribalSystems/Zenario 3 https://github.com/dwisiswant0/advisory 3 https://github.com/facebook/hermes 3 https://github.com/apache/dolphinscheduler 3 https://github.com/LetianYuan/My-CVE-Public-References 3 https://github.com/h2oai/h2o-3 3 https://github.com/sparklemotion/nokogiri 3 https://github.com/yaml/pyyaml 3 https://github.com/NASA-AMMOS/AIT-Core 3 https://github.com/hazelcast/hazelcast 3 https://github.com/mbechler/marshalsec 3 https://github.com/neorazorx/facturascripts 3 https://github.com/strapi/strapi 3 https://github.com/kjur/jsrsasign 3 https://github.com/andrewhickman/id-map 3 https://github.com/apache/camel 3 https://github.com/nukeviet/nukeviet 3 https://github.com/NVIDIA/NVFlare 3 https://github.com/rubygems/rubygems 3 https://github.com/librenms/librenms 3 https://github.com/pytorch/serve 3 https://github.com/PHPMailer/PHPMailer 3 https://github.com/pytorch/pytorch 3 https://github.com/jflyfox/jfinal_cms 3 https://github.com/chakra-core/ChakraCore 3 https://github.com/jbroadway/elefant 3 https://github.com/sqlalchemy/sqlalchemy 3 https://github.com/rails/rails 3 https://github.com/eosphoros-ai/DB-GPT 3 https://github.com/modoboa/modoboa 3 https://github.com/better-auth/better-auth 2 https://github.com/mpdavis/python-jose 2 https://github.com/intelliants/subrion 2 https://github.com/apache/openmeetings 2 https://github.com/Microsoft/ChakraCore 2 https://github.com/http4s/http4s 2 https://github.com/javamelody/javamelody 2 https://github.com/NVIDIA/gpu-operator 2 https://github.com/graphite-project/graphite-web 2 https://github.com/lightning-ai/pytorch-lightning 2 https://github.com/BerriAI/litellm 2 https://github.com/evmos/evmos 2 https://github.com/frohoff/ysoserial 2 https://github.com/firebase/php-jwt 2 https://github.com/Islandora/Crayfish 2 https://github.com/rochacbruno/quokka 2 https://github.com/RaspAP/raspap-webgui 2 https://github.com/hashicorp/vault 2 https://github.com/HtmlUnit/htmlunit 2 https://github.com/Pylons/waitress 2 https://github.com/ionicabizau/parse-url 2 https://github.com/apache/pinot 2 https://github.com/libxmljs/libxmljs 2 https://github.com/qcubed/qcubed 2 https://github.com/apache/kylin 2 https://github.com/torrentpier/torrentpier 2 https://github.com/hashicorp/go-getter 2 https://github.com/rest-client/rest-client 2 https://github.com/cockpit-hq/cockpit 2 https://github.com/jenkinsci/script-security-plugin 2 https://github.com/node-saml/node-saml 2 https://github.com/apache/zeppelin 2 https://github.com/totaljs/framework 2 https://github.com/jfinal/jfinal 2 https://github.com/jmrozanec/cron-utils 2 https://github.com/getgrav/grav 2 https://github.com/nuxt/nuxt 2 https://github.com/nats-io/jwt 2 https://github.com/rubyzip/rubyzip 2 https://github.com/vufind-org/vufind 2 https://github.com/Admidio/admidio 2 https://github.com/simpleledger/slp-validate.js 2 https://github.com/nats-io/nats-server 2 https://github.com/OpenZeppelin/openzeppelin-contracts 2 https://github.com/ahdinosaur/set-in 2