Browse Security Advisories
Moderate Security Advisories for phpoffice/phpexcel Clear Filters
Moderate
18 days ago
Hugging Face Transformers library has Regular Expression Denial of Service
pypi
transformers
Moderate
20 days ago
Liferay Portal's System, Instance and Site Settings are vulnerable to Open Redirect
maven
com.liferay:com.liferay.site.admin.web, com.liferay:com.liferay.configuration.admin.web
Moderate
20 days ago
Liferay Portal's selection modal is vulnerable to XSS
maven
com.liferay:com.liferay.users.admin.web
Moderate
20 days ago
Hugging Face Transformers is vulnerable to ReDoS through its MarianTokenizer
pypi
transformers
Moderate
20 days ago
Liferay Portal's Organization Selector exposes organization data to remote authenticated users
maven
com.liferay:com.liferay.organizations.item.selector.web
Moderate
21 days ago
SurrealDB is Vulnerable to Unauthorized Data Exposure via LIVE Query Subscriptions
cargo
SurrealDB
Moderate
21 days ago
Subrion CMS: Authenticated administrators are able to gain escalated access through Run SQL Query tool
packagist
intelliants/subrion
Moderate
21 days ago
Liferay Portal API Allows Authenticated Users to Access Workflow Definitions by Name
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.integration.impl
Moderate
21 days ago
Flask App Builder has an Authentication Bypass vulnerability when using non AUTH_DB methods
pypi
flask-appbuilder
Moderate
21 days ago
jsondiffpatch is vulnerable to Cross-site Scripting (XSS) via HtmlFormatter::nodeBegin
npm
jsondiffpatch
Moderate
22 days ago
Liferay Portal is vulnerable to Reflected XSS attack through get_editor path
maven
com.liferay:com.liferay.frontend.editor.ckeditor.web
Moderate
22 days ago
Liferay Portal's Incorrect Authorization vulnerability can lead to guest users to obtaining sensitive data
maven
com.liferay:com.liferay.headless.builder.impl
Moderate
22 days ago
Infrahub: Deleted and expired API tokens can still authenticate
pypi
infrahub-server
Moderate
22 days ago
Indico may disclose unauthorized user details access via legacy API
pypi
indico
Moderate
22 days ago
Liferay Portal and Liferay DXP vulnerable to Stored Cross-site Scripting
maven
com.liferay:com.liferay.portal.workflow.task.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
23 days ago
Liferay Portal exposes ERC which can lead to exploit the time response attack
maven
com.liferay:com.liferay.portal.workflow.api, com.liferay:com.liferay.headless.admin.workflow.impl, com.liferay:com.liferay.portal.vulcan.impl
Moderate
23 days ago
Liferay Portal is vulnerable to XSS attack through its search bar portlet
maven
com.liferay:com.liferay.portal.search.web
Moderate
23 days ago
Liferay Portal is vulnerable to XSS attacks via its remote app title field
maven
com.liferay:com.liferay.client.extension.web
Moderate
23 days ago
TinyEnv: Inline comments not stripped properly in .env values
packagist
datahihi1/tiny-env
Moderate
23 days ago
TinyEnv: Missing .env file not required — may cause unexpected behavior
packagist
datahihi1/tiny-env
Moderate
23 days ago
Element Plus Link component (el-link) implements insufficient input validation for the href attribute
npm
element-plus
Moderate
23 days ago
Liferay Portal and Liferay DXP vulnerable to store Cross-site Scripting
maven
com.liferay:com.liferay.portal.workflow.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
23 days ago
copyparty: Sharing a single file does not fully restrict access to other files in source folder
pypi
copyparty
Moderate
23 days ago
TYPO3 CSV download feature information disclosure
packagist
typo3/cms-recordlist, typo3/cms-backend
Moderate
23 days ago
TYPO3 CMS exposes sensitive information in an error message
packagist
typo3/cms-core
Moderate
23 days ago
TYPO3 backend modules have Broken Access Control
packagist
typo3/cms-dashboard, typo3/cms-recycler, typo3/cms-workspaces
Moderate
23 days ago
TYPO3 Bookmark Toolbar vulnerable to denial of service
packagist
typo3/cms-backend
Moderate
23 days ago
TYPO3 CMS uses insufficient entropy when generating passwords
packagist
typo3/cms-core
Moderate
23 days ago
Liferay Portal exposes 500 status when attempting login with a deleted client secret
maven
com.liferay:com.liferay.portal.security.sso.openid.connect.impl
Moderate
23 days ago
Liferay Portal is vulnerable to XSS attack through fieldset name in Kaleo Forms Admin
maven
com.liferay:com.liferay.portal.workflow.kaleo.forms.web
Moderate
23 days ago
Liferay Portal is vulnerable to SSRF through custom object attachment fields
maven
com.liferay:com.liferay.object.service
Moderate
24 days ago
Fides Webserver API Rate Limiting Vulnerability in Proxied Environments
pypi
ethyca-fides
Moderate
24 days ago
SimStudioAI: A function in route.ts is vulnerable to Code Injection
npm
simstudio
Moderate
24 days ago
sanitize-html is vulnerable to XSS through incomprehensive sanitization
npm
sanitize-html
Moderate
24 days ago
Apache Jackrabbit: Core and JCR Commons are vulnerable to Deserialization of Untrusted Data
maven
org.apache.jackrabbit:jackrabbit-jcr-commons, org.apache.jackrabbit:jackrabbit-core
Moderate
27 days ago
secrets-store-sync-controller discloses service account tokens in logs
go
sigs.k8s.io/secrets-store-sync-controller
Moderate
27 days ago
FS2 half-shutdown of socket during TLS handshake may result in spin loop on opposite side
maven
co.fs2:fs2-io_2.13.0-M5, co.fs2:fs2-io_2.12.0-RC2, co.fs2:fs2-io_2.12.0-M5, co.fs2:fs2-io_2.12.0-RC1, co.fs2:fs2-io_2.12.0-M4, co.fs2:fs2-io_2.11, co.fs2:fs2-io_0.27, co.fs2:fs2-io_0.26, co.fs2:fs2-io_3, co.fs2:fs2-io_2.13, co.fs2:fs2-io_2.12
Moderate
28 days ago
Vaadin Platform possible file bypass via upload validation on the server-side
maven
com.vaadin:vaadin
Moderate
28 days ago
Vaadin Flow Components possible file bypass via upload validation on the server-side
maven
com.vaadin:vaadin-upload-flow
Moderate
28 days ago
Vaadin Framework possible file bypass via upload validation on the server-side
maven
com.vaadin:vaadin-server
Moderate
28 days ago
Memos Vulnerable to Path Traversal via the CreateResource Endpoint
go
github.com/usememos/memos
Moderate
28 days ago
Mautic Vulnerable to User Enumeration via Response Timing
packagist
mautic/core
Moderate
28 days ago
Mautic vulnerable to reflected XSS in lead:addLeadTags - Quick Add
packagist
mautic/core
Moderate
29 days ago
frost-core: refresh shares with smaller min_signers will reduce security of group
cargo
frost-core
Moderate
29 days ago
Netty's decoders vulnerable to DoS via zip bomb style attack
maven
io.netty:netty-codec, io.netty:netty-codec-compression
Moderate
29 days ago
Jenkins OpenTelemetry Plugin missing permission check allows capturing credentials
maven
io.jenkins.plugins:opentelemetry
Moderate
29 days ago
Jenkins Git client Plugin file system information disclosure vulnerability
maven
org.jenkins-ci.plugins:git-client
Moderate
29 days ago
Jenkins global-build-stats Plugin missing permission check can result in graph IDs being enumerated
maven
org.jenkins-ci.plugins:global-build-stats
Moderate
30 days ago
MobSF Vulnerable to Arbitrary File Write (AR-Slip) via Absolute Path in .a Extraction
pypi
mobsf
Moderate
30 days ago
Local Deep Research's API keys are stored in plain text
pypi
local-deep-research
Moderate
30 days ago
Silverpeas Core Username Enumeration Vulnerability
maven
org.silverpeas.core:silverpeas-core
Moderate
about 1 month ago
Next.js Affected by Cache Key Confusion for Image Optimization API Routes
npm
next
Moderate
about 1 month ago
Liferay Portal allows improper access through the expandoTableLocalService
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.impl
Moderate
about 1 month ago
github.com/gorilla/csrf improperly validates TrustedOrigins allowing CSRF attacks
go
github.com/gorilla/csrf
Moderate
about 1 month ago
Eventlet affected by HTTP request smuggling in unparsed trailers
pypi
eventlet
Moderate
about 1 month ago
Google Sign-In for Rails allowed redirect to protocol-relative URI
rubygems
google_sign_in
Moderate
about 1 month ago
AiondaDotCom mcp-ssh command injection vulnerability in SSH operations
npm
@aiondadotcom/mcp-ssh
Moderate
about 1 month ago
Payload's SQLite adapter Session Fixation vulnerability
npm
@payloadcms/graphql, @payloadcms/next, payload
Moderate
about 1 month ago
Payload does not invalidate JWTs after log out
npm
@payloadcms/graphql, @payloadcms/next, payload
Moderate
about 1 month ago
github.com/ulikunitz/xz leaks memory when decoding a corrupted multiple LZMA archives
go
github.com/ulikunitz/xz
Moderate
about 1 month ago
FormCms avatar upload feature has a stored cross-site scripting (XSS) vulnerability
nuget
FormCMS
Moderate
about 1 month ago
XWiki PDF export jobs store sensitive cookies unencrypted in job statuses
maven
org.xwiki.platform:xwiki-platform-export-pdf-api
Moderate
about 1 month ago
Contao does not properly manage privileges for page and article fields
packagist
contao/contao, contao/core-bundle
Moderate
about 1 month ago
Contao can disclose sensitive information in the news module
packagist
contao/contao, contao/core-bundle
Moderate
about 1 month ago
Contao discloses sensitive information in the front end search index
packagist
contao/contao, contao/core-bundle
Moderate
about 1 month ago
Contao applies improper access control in the back end voters
packagist
contao/contao, contao/core-bundle
Moderate
about 1 month ago
lychee link checking action affected by arbitrary code injection in composite action
actions
lycheeverse/lychee-action
Moderate
about 1 month ago
NeuVector process with sensitive arguments lead to leakage
go
github.com/neuvector/neuvector
Moderate
about 1 month ago
NeuVector has an insecure password storage vulnerable to rainbow attack
go
github.com/neuvector/neuvector
Moderate
about 1 month ago
Kubernetes Nodes can delete themselves by adding an OwnerReference
go
k8s.io/kubernetes
Moderate
about 1 month ago
Google Sign-In for Rails allowed redirects to malformed URLs
rubygems
google_sign_in
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python library asyncio.unix_events._UnixSubprocessTransport._start
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python cProfile.run
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python cProfile.runctx
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python doctest.debug_script
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python idlelib.pyshell.ModifiedInterpreter.runcode
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python idlelib.pyshell.ModifiedInterpreter.runcommand
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python idlelib.run.Executive.runcode
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python lib2to3.pgen2.pgen.ParserGenerator.make_label
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling built-in python ensurepip._run_pip
pypi
picklescan
Moderate
about 1 month ago
Picklescan is missing detection when calling pytorch function torch.utils.bottleneck.__main__.run_autograd_prof
pypi
picklescan
Moderate
about 1 month ago
GraphQL Armor Max-Depth Plugin Bypass via fragment caching
npm
@escape.tech/graphql-armor-max-depth
Moderate
about 1 month ago
GraphQL Armor Max-Depth Plugin Bypass via Introspection Query Obfuscation
npm
@escape.tech/graphql-armor-max-depth
Moderate
about 1 month ago
Picklescan has a missing detection when calling built-in python library idlelib.calltip.get_entity
pypi
picklescan
Filter by Severity
Filter by Ecosystem
maven
3,253
packagist
2,963
pypi
2,035
npm
1,394
go
1,293
nuget
529
cargo
422
rubygems
416
hex
16
swift
11
actions
8
pub
3
Filter by Package
moodle/moodle
306
tensorflow
200
tensorflow-cpu
191
tensorflow-gpu
189
magento/community-edition
167
org.jenkins-ci.main:jenkins-core
148
typo3/cms
126
com.liferay.portal:release.portal.bom
104
org.apache.tomcat:tomcat
95
pimcore/pimcore
87
github.com/mattermost/mattermost/server/v8
83
com.liferay.portal:release.dxp.bom
80
microweber/microweber
72
typo3/cms-core
70
silverstripe/framework
67
phpmyadmin/phpmyadmin
56
dolibarr/dolibarr
55
github.com/usememos/memos
50
drupal/core
50
thorsten/phpmyfaq
47
concrete5/concrete5
46
apache-superset
45
apache-airflow
44
librenms/librenms
43
actionpack
43
Django
39
drupal/drupal
38
showdoc/showdoc
34
picklescan
34
org.elasticsearch:elasticsearch
33
mantisbt/mantisbt
33
org.keycloak:keycloak-core
32
github.com/grafana/grafana
31
craftcms/cms
31
magento/project-community-edition
30
symfony/symfony
30
plone
29
nova
29
github.com/mattermost/mattermost-server/v6
29
github.com/mattermost/mattermost-server
28
intelliants/subrion
27
mautic/core
27
snipe/snipe-it
27
moin
27
baserproject/basercms
26
ansible
25
k8s.io/kubernetes
24
Plone
24
directus
23
shopware/platform
23
nilsteampassnet/teampass
21
github.com/hashicorp/vault
21
org.keycloak:keycloak-services
21
github.com/answerdev/answer
21
django
20
mediawiki/core
20
grumpydictator/firefly-iii
20
froxlor/froxlor
20
gradio
20
matrix-synapse
19
github.com/cilium/cilium
19
shopware/shopware
19
org.apache.struts:struts2-core
19
remdex/livehelperchat
18
shopware/core
17
contao/core-bundle
17
getkirby/cms
17
salt
17
github.com/argoproj/argo-cd/v2
17
DotNetNuke.Core
17
prestashop/prestashop
16
github.com/docker/docker
16
rdiffweb
16
zendframework/zendframework1
16
vyper
15
org.apache.tomcat.embed:tomcat-embed-core
15
org.apache.jspwiki:jspwiki-main
15
org.opencms:opencms-core
15
yetiforce/yetiforce-crm
15
github.com/hashicorp/nomad
15
rack
15
io.undertow:undertow-core
15
org.xwiki.platform:xwiki-platform-oldcore
14
puppet
14
glance
14
tinymce
14
github.com/hashicorp/consul
14
org.springframework.security:spring-security-core
13
github.com/goharbor/harbor
13
tribalsystems/zenario
13
keystone
13
github.com/openfga/openfga
13
com.jfinal:jfinal
13
com.thoughtworks.xstream:xstream
13
forkcms/forkcms
13
nokogiri
12
typo3/cms-backend
12
helm.sh/helm/v3
12
simplesamlphp/simplesamlphp
12
roundup
12
wallabag/wallabag
12
next
12
transformers
12
lavalite/cms
11
@openzeppelin/contracts-upgradeable
11
activesupport
11
@openzeppelin/contracts
11
ec-cube/ec-cube
11
genix/cms
11
ckeditor4
11
feehi/feehicms
11
ghost
11
github.com/traefik/traefik/v2
11
github.com/ethereum/go-ethereum
11
org.bouncycastle:bcprov-jdk15on
11
getgrav/grav
11
org.eclipse.jetty:jetty-server
11
github.com/argoproj/argo-cd
11
TinyMCE
11
github.com/containerd/containerd
11
tinymce/tinymce
11
opencart/opencart
10
org.apache.solr:solr-core
10
francoisjacquet/rosariosis
10
zendframework/zendframework
10
org.apache.nifi:nifi
10
PaddlePaddle
10
com.vaadin:vaadin-bom
10
org.keycloak:keycloak-parent
10
org.springframework:spring-core
10
OctoPrint
10
com.liferay.portal:com.liferay.portal.impl
10
notebook
10
laravel/framework
10
surrealdb
10
bolt/bolt
10
fat_free_crm
10
vllm
10
aiohttp
10
vite
10
joplin
10
org.apache.jspwiki:jspwiki-war
10
github.com/greenpau/caddy-security
10
phpoffice/phpspreadsheet
10
bootstrap
10
electron
10
silverstripe/cms
9
org.igniterealtime.openfire:parent
9
rubygems-update
9
org.jenkins-ci.plugins:git
9
github.com/rancher/rancher
9
pimcore/admin-ui-classic-bundle
9
publify_core
9
calibreweb
9
org.opencrx:opencrx-core-models
9
org.mortbay.jetty:jetty
9
horizon
9
org.apache.activemq:activemq-client
9
wasmtime
9
contao/contao
9
pyftpdlib
9
gogs.io/gogs
9
open-webui
9
angular
9
org.jenkins-ci.plugins:script-security
9
code.gitea.io/gitea
9
urllib3
9
cakephp/cakephp
9
mlflow
8
github.com/mattermost/mattermost-plugin-confluence
8
activerecord
8
org.opensearch.plugin:opensearch-security
8
modoboa
8
pyload-ng
8
onionshare-cli
8
neutron
8
github.com/cri-o/cri-o
8
org.jenkins-ci.plugins:electricflow
8
camaleon_cms
8
parse-server
8
opencv-python
8
sylius/sylius
8
editor.md
8
github.com/traefik/traefik/v3
8
github.com/kubeedge/kubeedge
8
org.apache.archiva:archiva
8
Microsoft.ChakraCore
8
alextselegidis/easyappointments
8
phpmyfaq/phpmyfaq
8
phpbb/phpbb
8
org.apache.ranger:ranger
8
sulu/sulu
8
swagger-ui
8
impresscms/impresscms
8
opencv-contrib-python
8
centreon/centreon
8
org.jenkins-ci.plugins:subversion
8
rails-html-sanitizer
8
silverstripe/admin
7
org.jenkins-ci.plugins:email-ext
7
Filter by Repository
https://github.com/tensorflow/tensorflow
200
https://github.com/moodle/moodle
186
https://github.com/liferay/liferay-portal
115
https://github.com/jenkinsci/jenkins
109
https://github.com/pimcore/pimcore
85
https://github.com/TYPO3/typo3
64
https://github.com/microweber/microweber
63
https://github.com/apache/tomcat
62
https://github.com/xwiki/xwiki-platform
50
https://github.com/silverstripe/silverstripe-framework
50
https://github.com/django/django
50
https://github.com/usememos/memos
50
https://github.com/rails/rails
46
https://github.com/thorsten/phpmyfaq
45
https://github.com/apache/airflow
43
https://github.com/keycloak/keycloak
42
https://github.com/kubernetes/kubernetes
40
https://github.com/librenms/librenms
40
https://github.com/mmaitre314/picklescan
34
https://github.com/star7th/showdoc
32
https://github.com/mantisbt/mantisbt
32
https://github.com/concretecms/concretecms
28
https://github.com/symfony/symfony
27
https://github.com/grafana/grafana
27
https://github.com/mautic/mautic
27
https://github.com/phpmyadmin/phpmyadmin
26
https://github.com/craftcms/cms
26
https://github.com/spring-projects/spring-framework
26
https://github.com/ansible/ansible
26
https://github.com/directus/directus
24
https://github.com/argoproj/argo-cd
24
https://github.com/mattermost/mattermost
24
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/Dolibarr/dolibarr
22
https://github.com/answerdev/answer
21
https://github.com/shopware/shopware
21
https://github.com/apache/activemq
20
https://github.com/firefly-iii/firefly-iii
20
https://github.com/snipe/snipe-it
20
https://github.com/plone/Products.CMFPlone
20
https://github.com/magento/magento2
20
https://github.com/cilium/cilium
19
https://github.com/openstack/nova
18
https://github.com/livehelperchat/livehelperchat
18
https://github.com/contao/contao
18
https://github.com/apache/struts
17
https://github.com/shopware/platform
17
https://github.com/gradio-app/gradio
16
https://github.com/ikus060/rdiffweb
16
https://github.com/matrix-org/synapse
16
https://github.com/apache/cxf
15
https://github.com/vyperlang/vyper
15
https://github.com/getkirby/kirby
15
https://github.com/CVEProject/cvelist
15
https://github.com/netty/netty
15
https://github.com/geoserver/geoserver
14
https://github.com/OpenNMS/opennms
14
https://github.com/saltstack/salt
14
https://github.com/TYPO3/TYPO3.CMS
14
https://github.com/tinymce/tinymce
14
https://github.com/froxlor/froxlor
14
https://github.com/yetiforcecompany/yetiforcecrm
14
https://github.com/x-stream/xstream
14
https://github.com/moby/moby
14
https://github.com/baserproject/basercms
14
https://github.com/PaddlePaddle/Paddle
14
https://github.com/go-gitea/gitea
13
https://github.com/nilsteampassnet/TeamPass
13
https://github.com/goharbor/harbor
13
https://github.com/openfga/openfga
13
https://github.com/octobercms/october
13
https://github.com/PrestaShop/PrestaShop
13
https://github.com/apache/nifi
13
https://github.com/containerd/containerd
12
https://github.com/rack/rack
12
https://github.com/helm/helm
12
https://github.com/huggingface/transformers
12
https://github.com/TYPO3-CMS/core
12
https://github.com/bcgit/bc-java
12
https://github.com/traefik/traefik
12
https://github.com/ckeditor/ckeditor4
11
https://github.com/vaadin/platform
11
https://github.com/openstack/keystone
11
https://github.com/OpenZeppelin/openzeppelin-contracts
11
https://github.com/surrealdb/surrealdb
11
https://github.com/electron/electron
11
https://github.com/forkcms/forkcms
11
https://github.com/ethereum/go-ethereum
11
https://github.com/apache/zeppelin
11
https://github.com/laravel/framework
11
https://github.com/github/advisory-database
11
https://github.com/strapi/strapi
11
https://github.com/intelliants/subrion
11
https://github.com/wallabag/wallabag
10
https://github.com/backstage/backstage
10
https://github.com/simplesamlphp/simplesamlphp
10
https://github.com/greenpau/caddy-security
10
https://github.com/bytecodealliance/wasmtime
10
https://github.com/vercel/next.js
10
https://github.com/decidim/decidim
10
https://github.com/laurent22/joplin
10
https://github.com/aio-libs/aiohttp
10
https://github.com/TryGhost/Ghost
10
https://github.com/hashicorp/consul
10
https://github.com/PHPOffice/PhpSpreadsheet
10
https://github.com/vitejs/vite
10
https://github.com/liufee/cms
10
https://github.com/urllib3/urllib3
9
https://github.com/thorsten/phpMyFAQ
9
https://github.com/dnnsoftware/Dnn.Platform
9
https://github.com/vllm-project/vllm
9
https://github.com/rancher/rancher
9
https://github.com/alkacon/opencms-core
9
https://github.com/puppetlabs/puppet
9
https://github.com/pimcore/admin-ui-classic-bundle
9
https://github.com/publify/publify
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/jquery/jquery
9
https://github.com/jenkinsci/git-plugin
9
https://github.com/dpgaspar/Flask-AppBuilder
9
https://github.com/sparklemotion/nokogiri
8
https://github.com/rubygems/rubygems
8
https://github.com/dolibarr/dolibarr
8
https://github.com/pyload/pyload
8
https://github.com/sulu/sulu
8
https://github.com/dotnet/runtime
8
https://github.com/eclipse/jetty.project
8
https://github.com/swagger-api/swagger-ui
8
https://github.com/rails/rails-html-sanitizer
8
https://github.com/zendframework/zendframework
8
https://github.com/OctoPrint/OctoPrint
8
https://github.com/openstack/glance
8
https://github.com/hashicorp/nomad
8
https://github.com/nilsteampassnet/teampass
8
https://github.com/modoboa/modoboa
8
https://github.com/onionshare/onionshare
8
https://github.com/pandao/editor.md
8
https://github.com/gogs/gogs
8
https://github.com/LavaLite/cms
8
https://github.com/opencast/opencast
8
https://github.com/opensearch-project/security
8
https://github.com/kubeedge/kubeedge
8
https://github.com/apache/superset
8
https://github.com/denoland/deno
8
https://github.com/parse-community/parse-server
8
https://github.com/getgrav/grav
8
https://github.com/scrapy/scrapy
7
https://github.com/containers/podman
7
https://github.com/twbs/bootstrap
7
https://github.com/matrix-org/matrix-rust-sdk
7
https://github.com/google/fscrypt
7
https://github.com/undertow-io/undertow
7
https://github.com/MobSF/Mobile-Security-Framework-MobSF
7
https://github.com/croogo/croogo
7
https://github.com/modxcms/revolution
7
https://github.com/dragonflyoss/dragonfly
7
https://github.com/nocodb/nocodb
7
https://github.com/jupyter/notebook
7
https://github.com/kevinpapst/kimai2
7
https://github.com/zitadel/zitadel
7
https://github.com/python-pillow/Pillow
7
https://github.com/jeecgboot/jeecg-boot
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/Sylius/Sylius
7
https://github.com/n8n-io/n8n
7
https://github.com/Leantime/leantime
7
https://github.com/vega/vega
7
https://github.com/hashicorp/vault
7
https://github.com/igniterealtime/Openfire
7
https://github.com/nahsra/antisamy
7
https://github.com/openstack/horizon
7
https://github.com/janeczku/calibre-web
7
https://github.com/jenkinsci/blueocean-plugin
7
https://github.com/opencv/opencv
7
https://github.com/opencontainers/runc
7
https://github.com/chakra-core/ChakraCore
7
https://github.com/vaadin/flow
7
https://github.com/d4wner/Vulnerabilities-Report
6
https://github.com/pmmp/PocketMine-MP
6
https://github.com/louislam/uptime-kuma
6
https://github.com/ckan/ckan
6
https://github.com/zenml-io/zenml
6
https://github.com/jenkinsci/subversion-plugin
6
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
6
https://github.com/FlowiseAI/Flowise
6
https://github.com/stacklok/minder
6
https://github.com/jenkinsci/fortify-on-demand-uploader-plugin
6
https://github.com/nodejs/undici
6
https://github.com/jenkinsci/configuration-as-code-plugin
6
https://github.com/drupal/core
6
https://github.com/1Panel-dev/1Panel
6
https://github.com/cui2shark/security
6
https://github.com/psf/requests
6
https://github.com/yiisoft/yii2
6
https://github.com/run-llama/llama_index
6
https://github.com/matrix-org/matrix-js-sdk
6
https://github.com/tecnickcom/TCPDF
6
https://github.com/giampaolo/pyftpdlib
6
https://github.com/wagtail/wagtail
6