Browse Security Advisories
Critical Security Advisories for wasmtime Clear Filters
Critical
5 days ago
DNN Insufficient Access Control - Image Upload allows for Site Content Overwrite
nuget
DNN.PLATFORM
Critical
10 days ago
Karmada Dashboard API Unauthorized Access Vulnerability
go
github.com/karmada-io/dashboard
Critical
13 days ago
NeuVector Enforcer is vulnerable to Command Injection and Buffer overflow
go
github.com/neuvector/neuvector
Critical
14 days ago
NetBird VPN does not remove the default password of an admin account
go
github.com/netbirdio/netbird
Critical
17 days ago
MCMS vulnerable SQL injection via the content_title parameter
maven
net.mingsoft:ms-mcms
Critical
17 days ago
pyquokka is Vulnerable to Remote Code Execution by Pickle Deserialization via FlightServer
pypi
pyquokka
Critical
18 days ago
bagisto has CSV Formula Injection in Create New Product
packagist
bagisto/bagisto
Critical
18 days ago
PrestaShop Checkout allows customer account takeover via email
packagist
prestashop/ps_checkout
Critical
18 days ago
Apache ActiveMQ NMS AMQP Client has a Deserialization of Untrusted Data vulnerability
nuget
Apache.NMS.AMQP
Critical
19 days ago
happy-dom's `--disallow-code-generation-from-strings` is not sufficient for isolating untrusted JavaScript
npm
happy-dom
Critical
20 days ago
Microsoft Security Advisory CVE-2025-55315: .NET Security Feature Bypass Vulnerability
nuget
Microsoft.AspNetCore.App.Runtime.linux-arm64, Microsoft.AspNetCore.App.Runtime.linux-arm, Microsoft.AspNetCore.App.Runtime.win-x86, Microsoft.AspNetCore.App.Runtime.win-x64, Microsoft.AspNetCore.App.Runtime.win-arm64, Microsoft.AspNetCore.App.Runtime.win-arm, Microsoft.AspNetCore.App.Runtime.osx-x64, Microsoft.AspNetCore.App.Runtime.osx-arm64, Microsoft.AspNetCore.App.Runtime.linux-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-x64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm64, Microsoft.AspNetCore.App.Runtime.linux-musl-arm
Critical
25 days ago
BBOT's insufficient sanitization issues in gitdumper.py can lead to RCE
pypi
bbot
Critical
25 days ago
BBOT's various issues in unarchive.py can cause arbitrary file write and RCE
pypi
bbot
Critical
25 days ago
Better Auth: Unauthenticated API key creation through api-key plugin
npm
better-auth
Critical
25 days ago
Flowise is vulnerable to arbitrary file write through its WriteFileTool
npm
flowise-components, flowise
Critical
26 days ago
Melis Platform CMS Unauthenticated File Upload Leading to RCE
packagist
melisplatform/melis-cms-slider
Critical
26 days ago
Melis Platform CMS Unauthenticated Admin Account Creation
packagist
melisplatform/melis-core
Critical
27 days ago
Akka.Remote TLS did not properly implement certificate-based authentication
nuget
Akka.Cluster, Akka.Remote
Critical
28 days ago
XWiki Platform is vulnerable to HQL injection via wiki and space search REST API
maven
org.xwiki.platform:xwiki-platform-rest-server
Critical
28 days ago
XWiki OIDC Authenticator: Users with "view" access can create tokens for any users they can view
maven
org.xwiki.contrib.oidc:oidc-authenticator
Critical
28 days ago
Flowise vulnerable to RCE via Dynamic function constructor injection
npm
flowise
Critical
about 1 month ago
Flowise is vulnerable to stored XSS via "View Messages" allows credential theft in FlowiseAI admin panel
npm
flowise
Critical
about 1 month ago
risc0 vulnerable to arbitrary code execution in guest via memory safety failure in `sys_read`
cargo
risc0-zkvm, risc0-aggregation, risc0-zkos-v1compat, risc0-zkvm-platform
Critical
about 1 month ago
Apache Pyfory python is vulnerable to deserialization of untrusted data
pypi
pyfury, pyfory
Critical
about 1 month ago
j178/prek-action vulnerable to arbitrary code injection in composite action
actions
j178/prek-action
Critical
about 1 month ago
get-jwks: poisoned JWKS cache allows post-fetch issuer validation bypass
npm
get-jwks
Critical
about 1 month ago
Gardener provider extensions vulnerable to code injection when Terraform is used for infrastructure provisioning
go
github.com/gardener/gardener-extension-provider-openstack, github.com/gardener/gardener-extension-provider-azure, github.com/gardener/gardener-extension-provider-gcp, github.com/gardener/gardener-extension-provider-aws
Critical
about 1 month ago
cors-anywhere vulnerable to server-side request forgery
npm
cors-anywhere
Critical
about 1 month ago
Apache IoTDB: Deserialization of untrusted Data
maven
org.apache.iotdb:iotdb-confignode
Critical
about 1 month ago
DNN Vulnerable to Stored Cross-Site Scripting (XSS) in the Prompt module
nuget
DotNetNuke.Core
Critical
about 1 month ago
H2O affected by a deserialization vulnerability
pypi, maven
h2o, ai.h2o:h2o-core
Critical
about 2 months ago
jinjava has Sandbox Bypass via JavaType-Based Deserialization
maven
com.hubspot.jinjava:jinjava
Critical
about 2 months ago
Spring Expression language property modification using Spring Cloud Gateway Server WebFlux
maven
org.springframework.cloud:spring-cloud-gateway-server-webflux
Critical
about 2 months ago
Flowise has arbitrary file access due to missing chat flow id validation
npm
flowise
Critical
about 2 months ago
mcp-kubernetes-server has an OS Command Injection vulnerability
pypi
mcp-kubernetes-server
Critical
about 2 months ago
Chaos Controller Manager is vulnerable to OS command injection
go
github.com/chaos-mesh/chaos-mesh
Critical
about 2 months ago
Chaos Controller Manager is vulnerable to OS command injection
go
github.com/chaos-mesh/chaos-mesh
Critical
about 2 months ago
Chaos Controller Manager is vulnerable to OS command injection
go
github.com/chaos-mesh/chaos-mesh
Critical
about 2 months ago
Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
npm
flowise
Critical
about 2 months ago
Prebid-universal-creative latest on npm briefly compromised
npm
prebid-universal-creative
Critical
about 2 months ago
interactive-git-checkout has a Command Injection vulnerability
npm
interactive-git-checkout
Critical
about 2 months ago
Picklescan Bypass is Possible via File Extension Mismatch
pypi
picklescan
Critical
about 2 months ago
Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check
pypi
picklescan
Critical
about 2 months ago
Hoverfly is vulnerable to Remote Code Execution through an insecure middleware implementation
go
github.com/SpectoLabs/hoverfly
Critical
about 2 months ago
Picklescan is Vulnerable to Unsafe Globals Check Bypass through Subclass Imports
pypi
picklescan
Critical
about 2 months ago
Magento Community Edition Improper Input Validation vulnerability
packagist
magento/project-community-edition, magento/community-edition
Critical
about 2 months ago
pREST has a Systemic SQL Injection Vulnerability
go
github.com/prest/prest/v2
Critical
about 2 months ago
@akoskm/create-mcp-server-stdio is vulnerable to MCP Server Command Injection through `exec` API
npm
@akoskm/create-mcp-server-stdio
Critical
about 2 months ago
CodeceptJS's incomprehensive sanitation can lead to Command Injection
npm
codeceptjs
Critical
about 2 months ago
internetarchive Vulnerable to Directory Traversal in File.download()
pypi
internetarchive
Critical
about 2 months ago
Argo CD's Project API Token Exposes Repository Credentials
go
github.com/argoproj/argo-cd/v3, github.com/argoproj/argo-cd/v2
Critical
about 2 months ago
Pixar OpenUSD Sdf_PathNode Module Use-After-Free Vulnerability Leading to Potential Remote Code Execution
pypi
usd-core
Critical
2 months ago
DeepDiff Class Pollution in Delta class leading to DoS, Remote Code Execution, and more
pypi
deepdiff
Critical
2 months ago
XWiki configuration files can be accessed through jsx and sx endpoints
maven
org.xwiki.platform:xwiki-platform-skin-skinx
Critical
2 months ago
XWiki configuration files can be accessed through the webjars API
maven
org.xwiki.platform:xwiki-platform-webjars-api
Critical
2 months ago
Valtimo scripting engine can be used to gain access to sensitive data or resources
maven
com.ritense.valtimo:core
Critical
2 months ago
NeuVector admin account has insecure default password
go
github.com/neuvector/neuvector
Critical
2 months ago
Malicious versions of Nx were published
npm
@nx/workspace, @nx/js, @nx/devkit, @nx/node, nx, @nx/eslint, @nx/enterprise-cloud, @nx/key
Critical
2 months ago
The Freeform CraftCMS plugin contains an Server-side template injection (SSTI) vulnerability
packagist
solspace/craft-freeform
Critical
2 months ago
sha.js is missing type checks leading to hash rewind and passing on crafted data
npm
sha.js
Critical
2 months ago
cipher-base is missing type checks, leading to hash rewind and passing on crafted data
npm
cipher-base
Critical
2 months ago
Apache Tika XXE Vulnerability via Crafted XFA File Inside a PDF
maven
org.apache.tika:tika-parser-pdf-module
Critical
2 months ago
Directus allows unauthenticated file upload and file modification due to lacking input sanitization
npm
@directus/api, directus
Critical
3 months ago
screenshot-desktop vulnerable to command Injection via `format` option
npm
screenshot-desktop
Critical
3 months ago
Capsule tenant owners with "patch namespace" permission can hijack system namespaces label
go
github.com/projectcapsule/capsule
Critical
3 months ago
Active Storage allowed transformation methods that were potentially unsafe
rubygems
activestorage
Critical
3 months ago
m00nl1ght-dev/steam-workshop-deploy: Exposure of Version-Control Repository to an Unauthorized Control Sphere and Insufficiently Protected Credentials
actions
BoldestDungeon/steam-workshop-deploy, m00nl1ght-dev/steam-workshop-deploy
Critical
3 months ago
Privileged OpenBao Operator May Execute Code on the Underlying Host
go
github.com/openbao/openbao
Critical
3 months ago
JWE is missing AES-GCM authentication tag validation in encrypted JWE
rubygems
jwe
Critical
3 months ago
pyLoad CNL Blueprint allows Path Traversal through `dlc_path` which leads to Remote Code Execution (RCE)
pypi
pyload-ng
Critical
3 months ago
@nestjs/devtools-integration: CSRF to Sandbox Escape Allows for RCE against JS Developers
npm
@nestjs/devtools-integration
Critical
3 months ago
Hashicorp Vault has Code Execution Vulnerability via Plugin Configuration
go
github.com/hashicorp/vault
Critical
3 months ago
num2words subjected to phishing attack, two versions published containing malware
pypi
num2words
Critical
3 months ago
OAuth2-Proxy has authentication bypass in oauth2-proxy skip_auth_routes due to Query Parameter inclusion
go
github.com/oauth2-proxy/oauth2-proxy/v7
Critical
3 months ago
CodeIgniter4's ImageMagick Handler has Command Injection Vulnerability
packagist
codeigniter4/framework
Critical
3 months ago
smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module
pypi
smolagents
Filter by Severity
Filter by Ecosystem
npm
1,036
maven
941
packagist
567
pypi
520
go
321
cargo
169
rubygems
121
nuget
87
actions
9
hex
5
swift
2
Filter by Package
magento/community-edition
25
dolibarr/dolibarr
25
com.fasterxml.jackson.core:jackson-databind
24
net.mingsoft:ms-mcms
20
org.jenkins-ci.main:jenkins-core
19
com.liferay.portal:release.portal.bom
18
salt
17
com.liferay.portal:release.dxp.bom
17
magento/project-community-edition
16
moodle/moodle
16
topthink/framework
15
mlflow
14
org.apache.struts:struts2-core
14
org.apache.dubbo:dubbo
13
drupal/core
12
langchain
12
org.xwiki.platform:xwiki-platform-oldcore
12
Django
12
gogs.io/gogs
11
flowise
11
vm2
10
phpmyadmin/phpmyadmin
10
apache-airflow
10
org.xwiki.platform:xwiki-platform-web-templates
10
drupal/drupal
9
ansible
9
funadmin/funadmin
9
froxlor/froxlor
8
org.xwiki.platform:xwiki-platform-administration-ui
8
github.com/argoproj/argo-cd/v2
8
rdiffweb
8
symfony/symfony
8
shopware/platform
8
sequelize
7
vllm
7
zendframework/zendframework1
7
rusqlite
7
studio-42/elfinder
7
pyload-ng
7
paddlepaddle
7
github.com/argoproj/argo-cd
7
parse-server
7
github.com/rancher/rancher
7
mercurial
6
pillow
6
mautic/core
6
ezsystems/ezpublish-kernel
6
craftcms/cms
6
org.apache.inlong:manager-pojo
6
github.com/hashicorp/vault
6
typo3/cms
6
nilsteampassnet/teampass
6
org.apache.shiro:shiro-core
6
zendframework/zendframework
6
org.jeecgframework.boot:jeecg-boot-common
6
github.com/answerdev/answer
6
aaptjs
6
thorsten/phpmyfaq
6
tensorflow
6
org.xwiki.platform:xwiki-platform-web
5
bentoml
5
steal
5
code.gitea.io/gitea
5
org.jeecgframework.boot:jeecg-boot-parent
5
prestashop/prestashop
5
safe-eval
5
org.apache.openmeetings:openmeetings-parent
5
nodebb
5
executorch
5
dompdf/dompdf
5
dbgpt
5
github.com/mattermost/mattermost/server/v8
5
github.com/grafana/grafana
5
org.xwiki.commons:xwiki-commons-xml
5
adodb/adodb-php
5
shopware/core
5
Microsoft.ChakraCore
5
org.jenkins-ci.plugins:script-security
5
librenms/librenms
5
ckb
5
centreon/centreon
5
cobbler
4
net.opentsdb:opentsdb
4
showdoc/showdoc
4
simplesamlphp/simplesamlphp
4
tensorflow-gpu
4
org.apache.tomcat:tomcat-catalina
4
safer-eval
4
hermes-engine
4
realms-shim
4
aim
4
swagger-ui
4
org.eclipse.jetty:jetty-server
4
ruby-saml
4
tensorflow-cpu
4
calibreweb
4
org.xwiki.platform:xwiki-platform-flamingo-skin-resources
4
contao/core-bundle
4
messagepack-rs
4
org.apache.kylin:kylin-server-base
4
org.apache.inlong:manager-service
4
openssl-src
4
Pillow
4
feehi/cms
4
shopware/shopware
4
h2o
4
gradio
4
tribalsystems/zenario
4
langchain-experimental
4
contao/contao
4
ait-core
4
nukeviet/nukeviet
4
org.xwiki.platform:xwiki-platform-search-ui
4
mongoose
4
ai.h2o:h2o-core
4
org.apache.ignite:ignite-core
4
org.xwiki.platform:xwiki-platform-appwithinminutes-ui
4
ray
4
org.apache.tomcat.embed:tomcat-embed-core
4
github.com/usememos/memos
4
baserproject/basercms
4
org.apache.solr:solr-core
4
org.apache.tapestry:tapestry-core
4
org.jeecgframework.boot:jeecg-boot-base-core
4
smallvec
4
nokogiri
4
org.cloudfoundry.identity:cloudfoundry-identity-server
4
apache-airflow-providers-apache-hive
4
org.apache.activemq:activemq-client
4
torchserve
3
org.jenkins-ci.plugins:active-directory
3
actix-web
3
picklescan
3
github.com/beego/beego/v2
3
llama-index-core
3
xcb
3
org.zenframework.z8.dependencies.commons:log4j-1.2.17
3
Microsoft.AspNetCore.App.Runtime.linux-musl-arm
3
github.com/neuvector/neuvector
3
namada-apps
3
org.springframework.security:spring-security-core
3
xml-crypto
3
apache-submarine
3
com.jflyfox:jflyfox_jfinal
3
org.xwiki.platform:xwiki-platform-panels-ui
3
ro.pippo:pippo-core
3
vyper
3
publify_core
3
org.xwiki.platform:xwiki-platform-icon-ui
3
com.hazelcast:hazelcast
3
github.com/gofiber/fiber/v2
3
llama-index
3
com.alibaba:dubbo
3
org.apache.any23:apache-any23
3
org.xwiki.platform:xwiki-platform-distribution-war
3
ibexa/core
3
github.com/chaos-mesh/chaos-mesh
3
SQLAlchemy
3
Microsoft.AspNetCore.App.Runtime.osx-arm64
3
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
3
mitmproxy
3
impresscms/impresscms
3
agentscope
3
codeigniter4/framework
3
symfony/security-core
3
org.apache.ozone:ozone-main
3
github.com/IceWhaleTech/CasaOS
3
elefant/cms
3
jsrsasign
3
pyyaml
3
io.dataease:dataease-plugin-common
3
rubygems-update
3
log4j:log4j
3
codiad/codiad
3
dulwich
3
org.apache.jmeter:ApacheJMeter
3
slpjs
3
lmdb
3
org.xwiki.platform:xwiki-platform-flamingo-theme-ui
3
silverstripe/framework
3
better-auth
3
id-map
3
github.com/cosmos/ibc-go
3
Microsoft.AspNetCore.App.Runtime.linux-arm
3
happy-dom
3
browserify-shim
3
facade/ignition
3
django
3
twisted
3
alextselegidis/easyappointments
3
wwbn/avideo
3
org.xwiki.platform:xwiki-platform-rest-server
3
francoisjacquet/rosariosis
3
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
3
github.com/bnb-chain/tss-lib
3
Microsoft.AspNetCore.App.Runtime.linux-arm64
3
slp-validate
3
Microsoft.AspNetCore.App.Runtime.win-arm64
3
Microsoft.AspNetCore.App.Runtime.linux-x64
3
org.jeecgframework.boot:jeecg-boot-base
3
Filter by Repository
https://github.com/xwiki/xwiki-platform
101
https://github.com/FasterXML/jackson-databind
24
https://github.com/jenkinsci/jenkins
18
https://github.com/apache/airflow
16
https://github.com/django/django
15
https://github.com/Dolibarr/dolibarr
15
https://github.com/mlflow/mlflow
14
https://github.com/saltstack/salt
13
https://github.com/langchain-ai/langchain
12
https://github.com/argoproj/argo-cd
11
https://github.com/ming-soft/MCMS
11
https://github.com/gogs/gogs
11
https://github.com/apache/struts
10
https://github.com/patriksimek/vm2
10
https://github.com/magento/magento2
10
https://github.com/FlowiseAI/Flowise
10
https://github.com/apache/inlong
10
https://github.com/top-think/framework
9
https://github.com/funadmin/funadmin
9
https://github.com/jeecgboot/jeecg-boot
9
https://github.com/python-pillow/Pillow
9
https://github.com/PaddlePaddle/Paddle
9
https://github.com/ansible/ansible
8
https://github.com/ikus060/rdiffweb
8
https://github.com/go-gitea/gitea
8
https://github.com/parse-community/parse-server
7
https://github.com/rancher/rancher
7
https://github.com/Studio-42/elFinder
7
https://github.com/rusqlite/rusqlite
7
https://github.com/sequelize/sequelize
7
https://github.com/pyload/pyload
7
https://github.com/run-llama/llama_index
7
https://github.com/apache/tomcat
7
https://github.com/symfony/symfony
7
https://github.com/xwiki/xwiki-commons
6
https://github.com/tensorflow/tensorflow
6
https://github.com/answerdev/answer
6
https://github.com/shenzhim/aaptjs
6
https://github.com/dompdf/dompdf
6
https://github.com/thorsten/phpmyfaq
6
https://github.com/liferay/liferay-portal
6
https://github.com/shopware/platform
6
https://github.com/nervosnetwork/ckb
5
https://github.com/auth0/auth0-PHP
5
https://github.com/NodeBB/NodeBB
5
https://github.com/ADOdb/ADOdb
5
https://github.com/moodle/moodle
5
https://github.com/apache/activemq
5
https://github.com/pytorch/executorch
5
https://github.com/spring-projects/spring-framework
5
https://github.com/SAML-Toolkits/ruby-saml
5
https://github.com/craftcms/cms
5
https://github.com/vllm-project/vllm
5
https://github.com/keycloak/keycloak
5
https://github.com/PrestaShop/PrestaShop
5
https://github.com/twisted/twisted
5
https://github.com/dromara/hutool
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/stealjs/steal
5
https://github.com/froxlor/froxlor
5
https://github.com/grafana/grafana
5
https://github.com/star7th/showdoc
4
https://github.com/cobbler/cobbler
4
https://github.com/hwchase17/langchain
4
https://github.com/bentoml/BentoML
4
https://github.com/gradio-app/gradio
4
https://github.com/janeczku/calibre-web
4
https://github.com/xwiki/xwiki-rendering
4
https://github.com/ezsystems/ezpublish-kernel
4
https://github.com/ray-project/ray
4
https://github.com/kubernetes/kubernetes
4
https://github.com/dataease/dataease
4
https://github.com/usememos/memos
4
https://github.com/mautic/mautic
4
https://github.com/swagger-api/swagger-ui
4
https://github.com/OpenTSDB/opentsdb
4
https://github.com/otake84/messagepack-rs
4
https://github.com/nilsteampassnet/TeamPass
4
https://github.com/pippo-java/pippo
4
https://github.com/liufee/cms
4
https://github.com/servo/rust-smallvec
4
https://github.com/cloudfoundry/uaa
4
https://github.com/CVEProject/cvelist
4
https://github.com/contao/contao
4
https://github.com/phpmyadmin/phpmyadmin
4
https://github.com/anoma/namada
3
https://github.com/pimcore/pimcore
3
https://github.com/pterodactyl/wings
3
https://github.com/dexidp/dex
3
https://github.com/Automattic/mongoose
3
https://github.com/shopware5/shopware
3
https://github.com/librenms/librenms
3
https://github.com/sqlalchemy/sqlalchemy
3
https://github.com/denoland/deno
3
https://github.com/TeamSeri0us/pocs
3
https://github.com/pytorch/serve
3
https://github.com/strapi/strapi
3
https://github.com/smarty-php/smarty
3
https://github.com/jbroadway/elefant
3
https://github.com/jflyfox/jfinal_cms
3
https://github.com/NVIDIA/NVFlare
3
https://github.com/rails/rails
3
https://github.com/kjur/jsrsasign
3
https://github.com/ibexa/core
3
https://github.com/better-auth/better-auth
3
https://github.com/capricorn86/happy-dom
3
https://github.com/publify/publify
3
https://github.com/simpleledger/slpjs
3
https://github.com/rubygems/rubygems.org
3
https://github.com/apache/shiro
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/neorazorx/facturascripts
3
https://github.com/chaos-mesh/chaos-mesh
3
https://github.com/apache/camel
3
https://github.com/yaml/pyyaml
3
https://github.com/baserproject/basercms
3
https://github.com/spring-projects/spring-security
3
https://github.com/chakra-core/ChakraCore
3
https://github.com/mbechler/marshalsec
3
https://github.com/hazelcast/hazelcast
3
https://github.com/h2oai/h2o-3
3
https://github.com/mitmproxy/mitmproxy
3
https://github.com/octobercms/october
3
https://github.com/TribalSystems/Zenario
3
https://github.com/crewjam/saml
3
https://github.com/dotnet/aspnetcore
3
https://github.com/node-saml/xml-crypto
3
https://github.com/github/securitylab
3
https://github.com/sparklemotion/nokogiri
3
https://github.com/apache/dolphinscheduler
3
https://github.com/andrewhickman/id-map
3
https://github.com/NASA-AMMOS/AIT-Core
3
https://github.com/facebook/hermes
3
https://github.com/dwisiswant0/advisory
3
https://github.com/codeigniter4/CodeIgniter4
3
https://github.com/eosphoros-ai/DB-GPT
3
https://github.com/nukeviet/nukeviet
3
https://github.com/ezsystems/ezplatform-kernel
3
https://github.com/beego/beego
3
https://github.com/cosmos/ibc-go
3
https://github.com/pgadmin-org/pgadmin4
3
https://github.com/facade/ignition
3
https://github.com/ImpressCMS/impresscms
3
https://github.com/geoserver/geoserver
3
https://github.com/gofiber/fiber
3
https://github.com/vyperlang/vyper
3
https://github.com/actix/actix-web
3
https://github.com/mmaitre314/picklescan
3
https://github.com/rubygems/rubygems
3
https://github.com/shopware/shopware
3
https://github.com/centreon/centreon-archived
3
https://github.com/opencast/opencast
3
https://github.com/simplesamlphp/simplesamlphp
3
https://github.com/LetianYuan/My-CVE-Public-References
3
https://github.com/modoboa/modoboa
3
https://github.com/PHPMailer/PHPMailer
3
https://github.com/pytorch/pytorch
3
https://github.com/neuvector/neuvector
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/sidorares/node-mysql2
2
https://github.com/fluxcd/flux2
2
https://github.com/dominictarr/libnested
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/apache/incubator-hugegraph
2
https://github.com/go-git/go-git
2
https://github.com/hashicorp/go-getter
2
https://github.com/scalyr/scalyr-agent-2
2
https://github.com/uasoft-indonesia/badaso
2
https://github.com/sjep/array
2
https://github.com/rubyzip/rubyzip
2
https://github.com/HtmlUnit/htmlunit
2
https://github.com/noear/solon
2
https://github.com/top-think/thinkphp
2
https://github.com/nats-io/jwt
2
https://github.com/deepjavalibrary/djl
2
https://github.com/js-data/js-data
2
https://github.com/Kozea/Radicale
2
https://github.com/Ericsson/codechecker
2
https://github.com/graphite-project/graphite-web
2
https://github.com/vufind-org/vufind
2
https://github.com/mpdavis/python-jose
2
https://github.com/nuxt/nuxt
2
https://github.com/unshiftio/url-parse
2
https://github.com/totaljs/framework
2
https://github.com/lightning-ai/pytorch-lightning
2
https://github.com/frohoff/ysoserial
2
https://github.com/Islandora/Crayfish
2
https://github.com/puma/puma
2
https://github.com/viz-rs/nano-id
2
https://github.com/javamelody/javamelody
2
https://github.com/rochacbruno/quokka
2
https://github.com/rest-client/rest-client
2
https://github.com/Admidio/admidio
2
https://github.com/moby/buildkit
2
https://github.com/stanfordnlp/corenlp
2
https://github.com/h2database/h2database
2
https://github.com/ionicabizau/parse-url
2
https://github.com/NVIDIA/gpu-operator
2
https://github.com/Microsoft/ChakraCore
2