Browse Security Advisories
Security Advisories for web3-core-method Clear Filters
Moderate
24 days ago
TYPO3 Bookmark Toolbar vulnerable to denial of service
packagist
typo3/cms-backend
Moderate
24 days ago
TYPO3 CMS uses insufficient entropy when generating passwords
packagist
typo3/cms-core
Moderate
24 days ago
Liferay Portal exposes 500 status when attempting login with a deleted client secret
maven
com.liferay:com.liferay.portal.security.sso.openid.connect.impl
Moderate
24 days ago
Liferay Portal is vulnerable to XSS attack through fieldset name in Kaleo Forms Admin
maven
com.liferay:com.liferay.portal.workflow.kaleo.forms.web
Low
24 days ago
Liferay Portal is vulnerable to XSS attack through its Style Book theme
maven
com.liferay:com.liferay.frontend.taglib.clay
Moderate
24 days ago
Liferay Portal is vulnerable to SSRF through custom object attachment fields
maven
com.liferay:com.liferay.object.service
High
24 days ago
MCP Inspector is Vulnerable to Potential Command Execution via XSS When Connecting to an Untrusted MCP Server
npm
@modelcontextprotocol/inspector
High
24 days ago
XWiki Blog Application: Privilege Escalation (PR) from account through blog content
maven
org.xwiki.contrib.blog:application-blog-ui
High
24 days ago
Fides Webserver API is Vulnerable to OAuth Client Privilege Escalation
pypi
ethyca-fides
Moderate
24 days ago
Fides Webserver API Rate Limiting Vulnerability in Proxied Environments
pypi
ethyca-fides
Low
24 days ago
Fides has a Lack of Brute-Force Protections on Authentication Endpoints
pypi
ethyca-fides
Low
25 days ago
Fides' Admin UI User Password Change Does Not Invalidate Current Session
pypi
ethyca-fides
Critical
25 days ago
@akoskm/create-mcp-server-stdio is vulnerable to MCP Server Command Injection through `exec` API
npm
@akoskm/create-mcp-server-stdio
Critical
25 days ago
CodeceptJS's incomprehensive sanitation can lead to Command Injection
npm
codeceptjs
Moderate
25 days ago
SimStudioAI: A function in route.ts is vulnerable to Code Injection
npm
simstudio
Moderate
25 days ago
sanitize-html is vulnerable to XSS through incomprehensive sanitization
npm
sanitize-html
Moderate
25 days ago
Apache Jackrabbit: Core and JCR Commons are vulnerable to Deserialization of Untrusted Data
maven
org.apache.jackrabbit:jackrabbit-jcr-commons, org.apache.jackrabbit:jackrabbit-core
Low
27 days ago
Atlantis Exposes Service Version Publicly on /status API Endpoint
go
github.com/runatlantis/atlantis
Moderate
27 days ago
secrets-store-sync-controller discloses service account tokens in logs
go
sigs.k8s.io/secrets-store-sync-controller
Critical
27 days ago
internetarchive Vulnerable to Directory Traversal in File.download()
pypi
internetarchive
Moderate
27 days ago
FS2 half-shutdown of socket during TLS handshake may result in spin loop on opposite side
maven
co.fs2:fs2-io_2.13.0-M5, co.fs2:fs2-io_2.12.0-RC2, co.fs2:fs2-io_2.12.0-M5, co.fs2:fs2-io_2.12.0-RC1, co.fs2:fs2-io_2.12.0-M4, co.fs2:fs2-io_2.11, co.fs2:fs2-io_0.27, co.fs2:fs2-io_0.26, co.fs2:fs2-io_3, co.fs2:fs2-io_2.13, co.fs2:fs2-io_2.12
High
27 days ago
Coder vulnerable to privilege escalation could lead to a cross workspace compromise
go
github.com/coder/coder/v2
Low
28 days ago
ImageMagick BlobStream Forward-Seek Under-Allocation
nuget
Magick.NET-Q16-HDRI-arm64, Magick.NET-Q16-HDRI-OpenMP-arm64, Magick.NET-Q8-OpenMP-arm64, Magick.NET-Q16-OpenMP-arm64, Magick.NET-Q16-arm64, Magick.NET-Q8-arm64, Magick.NET-Q16-OpenMP-x64, Magick.NET-Q16-HDRI-OpenMP-x64, Magick.NET-Q8-OpenMP-x64, Magick.NET-Q16-HDRI-x64, Magick.NET-Q8-x64, Magick.NET-Q16-x64
High
28 days ago
pgadmin4 is affected by a Cross-Origin Opener Policy (COOP) vulnerability
pypi
pgadmin4
High
29 days ago
podman kube play symlink traversal vulnerability
go
github.com/containers/podman/v4, github.com/containers/podman/v5
Critical
29 days ago
Argo CD's Project API Token Exposes Repository Credentials
go
github.com/argoproj/argo-cd/v3, github.com/argoproj/argo-cd/v2
High
29 days ago
Server-Side Request Forgery via /_image endpoint in Astro Cloudflare adapter
npm
@astrojs/cloudflare
Critical
29 days ago
Pixar OpenUSD Sdf_PathNode Module Use-After-Free Vulnerability Leading to Potential Remote Code Execution
pypi
usd-core
Low
29 days ago
Netty vulnerable to request smuggling due to incorrect parsing of chunk extensions
maven
io.netty:netty-codec-http
Moderate
29 days ago
Vaadin Platform possible file bypass via upload validation on the server-side
maven
com.vaadin:vaadin
Moderate
29 days ago
Vaadin Flow Components possible file bypass via upload validation on the server-side
maven
com.vaadin:vaadin-upload-flow
Moderate
29 days ago
Vaadin Framework possible file bypass via upload validation on the server-side
maven
com.vaadin:vaadin-server
Moderate
29 days ago
Memos Vulnerable to Path Traversal via the CreateResource Endpoint
go
github.com/usememos/memos
Low
29 days ago
PyPI publish GitHub Action vulnerable to injectable expression expansions in action steps
actions
pypa/gh-action-pypi-publish
High
29 days ago
Langchain Community Vulnerable to XML External Entity (XXE) Attacks
pypi
langchain-community
High
29 days ago
Liferay Portal Vulnerable to Denial of Service in Kaleo Forms Admin
maven
com.liferay:com.liferay.portal.workflow.kaleo.forms.web
Critical
29 days ago
DeepDiff Class Pollution in Delta class leading to DoS, Remote Code Execution, and more
pypi
deepdiff
Moderate
29 days ago
Mautic Vulnerable to User Enumeration via Response Timing
packagist
mautic/core
Moderate
29 days ago
Mautic vulnerable to reflected XSS in lead:addLeadTags - Quick Add
packagist
mautic/core
Moderate
29 days ago
frost-core: refresh shares with smaller min_signers will reduce security of group
cargo
frost-core
High
30 days ago
Claude Code Vulnerable to Arbitrary Code Execution Due to Insufficient Startup Warning
npm
@anthropic-ai/claude-code
Low
30 days ago
CKEditor 5 cross-site scripting (XSS) vulnerability in the clipboard package
npm
@ckeditor/ckeditor5-clipboard, ckeditor5
Moderate
30 days ago
Netty's decoders vulnerable to DoS via zip bomb style attack
maven
io.netty:netty-codec, io.netty:netty-codec-compression
Critical
30 days ago
XWiki configuration files can be accessed through jsx and sx endpoints
maven
org.xwiki.platform:xwiki-platform-skin-skinx
Critical
30 days ago
XWiki configuration files can be accessed through the webjars API
maven
org.xwiki.platform:xwiki-platform-webjars-api
Moderate
30 days ago
Jenkins OpenTelemetry Plugin missing permission check allows capturing credentials
maven
io.jenkins.plugins:opentelemetry
Moderate
30 days ago
Jenkins Git client Plugin file system information disclosure vulnerability
maven
org.jenkins-ci.plugins:git-client
Moderate
30 days ago
Jenkins global-build-stats Plugin missing permission check can result in graph IDs being enumerated
maven
org.jenkins-ci.plugins:global-build-stats
Low
30 days ago
Apache DolphinScheduler Incorrect Default Permissions Vulnerability
maven
org.apache.dolphinscheduler:dolphinscheduler
High
about 1 month ago
Soft Serve vulnerable to arbitrary file writing through SSH API
go
github.com/charmbracelet/soft-serve
High
about 1 month ago
mcp-markdownify-server vulnerable to command injection in pptx-to-markdown tool
npm
mcp-markdownify-server
High
about 1 month ago
Command Injection via sonarqube-scan-action GitHub Action
actions
SonarSource/sonarqube-scan-action
High
about 1 month ago
arenavec has multiple memory corruption vulnerabilities in safe APIs
cargo
arenavec
Low
about 1 month ago
MobSF Path Traversal in GET /download/<filename> using absolute filenames
pypi
mobsf
Moderate
about 1 month ago
MobSF Vulnerable to Arbitrary File Write (AR-Slip) via Absolute Path in .a Extraction
pypi
mobsf
High
about 1 month ago
PocketMine-MP `ResourcePackDataInfoPacket` amplification vulnerability due to lack of resource pack sequence status checking
packagist
pocketmine/pocketmine-mp
High
about 1 month ago
ESP-IDF web_server basic auth bypass using empty or incomplete Authorization header
pypi
esphome
Moderate
about 1 month ago
Local Deep Research's API keys are stored in plain text
pypi
local-deep-research
Moderate
about 1 month ago
Silverpeas Core Username Enumeration Vulnerability
maven
org.silverpeas.core:silverpeas-core
High
about 1 month ago
Undertow MadeYouReset HTTP/2 DDoS Vulnerability
maven
io.undertow:undertow-core
Moderate
about 1 month ago
Next.js Affected by Cache Key Confusion for Image Optimization API Routes
npm
next
Moderate
about 1 month ago
Liferay Portal allows improper access through the expandoTableLocalService
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.impl
Low
about 1 month ago
Tracing logging user input may result in poisoning logs with ANSI escape sequences
cargo
tracing-subscriber
High
about 1 month ago
Rancher Fleet Helm Values are stored inside BundleDeployment in plain text
go
github.com/rancher/fleet
Moderate
about 1 month ago
github.com/gorilla/csrf improperly validates TrustedOrigins allowing CSRF attacks
go
github.com/gorilla/csrf
High
about 1 month ago
gnark affected by denial of service when computing scalar multiplication using fake-GLV algorithm
go
github.com/consensys/gnark
Moderate
about 1 month ago
Eventlet affected by HTTP request smuggling in unparsed trailers
pypi
eventlet
Moderate
about 1 month ago
Google Sign-In for Rails allowed redirect to protocol-relative URI
rubygems
google_sign_in
High
about 1 month ago
Harness Allows Arbitrary File Write in Gitness LFS server
go
github.com/harness/gitness
High
about 1 month ago
Versity panic induced by AWS chunked data sent to port
go
github.com/versity/versitygw
High
about 1 month ago
Rancher affected by unauthenticated Denial of Service
go
github.com/rancher/rancher
Low
about 1 month ago
Opencast has a partial path traversal vulnerability in UI config
maven
org.opencastproject:opencast-user-interface-configuration
Moderate
about 1 month ago
AiondaDotCom mcp-ssh command injection vulnerability in SSH operations
npm
@aiondadotcom/mcp-ssh
Low
about 1 month ago
Exiv2 has quadratic performance in ICC profile parsing in JpegBase::readMetadata
pypi
Exiv2
Low
about 1 month ago
Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata() via crafted EPS file
pypi
Exiv2
Moderate
about 1 month ago
Payload's SQLite adapter Session Fixation vulnerability
npm
@payloadcms/graphql, @payloadcms/next, payload
Moderate
about 1 month ago
Payload does not invalidate JWTs after log out
npm
@payloadcms/graphql, @payloadcms/next, payload
High
about 1 month ago
HashiCorp Vault Community Edition Denial of Service Though Complex JSON Payloads
go
github.com/hashicorp/vault
Moderate
about 1 month ago
github.com/ulikunitz/xz leaks memory when decoding a corrupted multiple LZMA archives
go
github.com/ulikunitz/xz
Low
about 1 month ago
Coder accepts an APIKey beyond the linked OIDC expiry if there is no refresh token
go
github.com/coder/coder/v2
High
about 1 month ago
Contrast leaks workload secrets to logs on INFO level
go
github.com/edgelesssys/contrast
Critical
about 1 month ago
Valtimo scripting engine can be used to gain access to sensitive data or resources
maven
com.ritense.valtimo:core
Filter by Severity
Filter by Ecosystem
maven
6,768
packagist
5,257
pypi
4,820
npm
4,306
go
2,890
nuget
1,494
cargo
1,089
rubygems
904
actions
39
hex
38
swift
33
pub
9
Filter by Package
tensorflow
433
moodle/moodle
418
tensorflow-cpu
408
tensorflow-gpu
395
magento/community-edition
301
Microsoft.ChakraCore
247
org.jenkins-ci.main:jenkins-core
242
typo3/cms
184
com.liferay.portal:release.portal.bom
139
org.apache.tomcat:tomcat
132
github.com/mattermost/mattermost/server/v8
130
com.liferay.portal:release.dxp.bom
125
pimcore/pimcore
120
dolibarr/dolibarr
117
phpmyadmin/phpmyadmin
107
microweber/microweber
103
typo3/cms-core
102
drupal/core
99
silverstripe/framework
89
Django
89
apache-airflow
86
librenms/librenms
83
drupal/drupal
74
thorsten/phpmyfaq
73
com.fasterxml.jackson.core:jackson-databind
69
github.com/usememos/memos
68
concrete5/concrete5
67
salt
65
ansible
63
actionpack
61
apache-superset
61
symfony/symfony
61
magento/project-community-edition
60
shopware/platform
58
org.apache.struts:struts2-core
56
github.com/grafana/grafana
56
Plone
54
mlflow
53
craftcms/cms
53
org.keycloak:keycloak-core
50
github.com/rancher/rancher
48
nova
48
mautic/core
47
baserproject/basercms
47
django
46
github.com/hashicorp/vault
46
nokogiri
46
shopware/core
46
vyper
44
gradio
44
github.com/mattermost/mattermost-server
43
org.xwiki.platform:xwiki-platform-oldcore
43
rdiffweb
42
org.elasticsearch:elasticsearch
42
nilsteampassnet/teampass
42
matrix-synapse
42
showdoc/showdoc
41
mantisbt/mantisbt
41
k8s.io/kubernetes
41
plone
41
org.keycloak:keycloak-services
41
intelliants/subrion
40
froxlor/froxlor
40
picklescan
39
directus
39
snipe/snipe-it
38
github.com/mattermost/mattermost-server/v6
38
org.apache.tomcat.embed:tomcat-embed-core
37
com.thoughtworks.xstream:xstream
37
com.jfinal:jfinal
36
net.mingsoft:ms-mcms
36
moin
35
io.undertow:undertow-core
35
github.com/argoproj/argo-cd/v2
35
github.com/answerdev/answer
34
parse-server
33
org.jenkins-ci.plugins:script-security
32
zendframework/zendframework1
32
gogs.io/gogs
32
github.com/cilium/cilium
31
github.com/hashicorp/nomad
31
keystone
31
shopware/shopware
31
github.com/argoproj/argo-cd
30
getgrav/grav
30
opencv-python
30
rack
30
next
29
opencv-contrib-python
29
github.com/hashicorp/consul
29
contao/core-bundle
29
github.com/docker/docker
29
electron
28
Pillow
28
org.apache.solr:solr-core
28
mediawiki/core
28
pillow
28
centreon/centreon
27
DotNetNuke.Core
27
prestashop/prestashop
27
org.opencms:opencms-core
27
org.springframework.security:spring-security-core
26
github.com/traefik/traefik/v2
25
org.eclipse.jetty:jetty-server
25
vllm
25
rubygems-update
25
pocketmine/pocketmine-mp
25
openssl-src
25
open-webui
25
flowise
24
org.keycloak:keycloak-parent
24
magento/core
24
surrealdb
24
getkirby/cms
24
pyload-ng
23
remdex/livehelperchat
23
grumpydictator/firefly-iii
23
simplesamlphp/simplesamlphp
23
ckb
22
puppet
22
laravel/framework
22
tribalsystems/zenario
22
zendframework/zendframework
22
activerecord
22
org.apache.openmeetings:openmeetings-parent
22
phpoffice/phpspreadsheet
22
org.apache.tomcat:tomcat-catalina
22
org.bouncycastle:bcprov-jdk15on
21
@openzeppelin/contracts
21
glance
21
org.apache.nifi:nifi
21
github.com/goharbor/harbor
21
@openzeppelin/contracts-upgradeable
20
funadmin/funadmin
20
code.gitea.io/gitea
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
cockpit-hq/cockpit
20
ethyca-fides
20
github.com/ethereum/go-ethereum
20
org.xwiki.platform:xwiki-platform-web-templates
20
wasmtime
20
aim
20
typo3/cms-backend
20
deno
19
contao/contao
19
github.com/zitadel/zitadel
19
topthink/framework
19
transformers
19
langchain
19
Microsoft.AspNetCore.App.Runtime.win-x86
19
Microsoft.AspNetCore.App.Runtime.win-x64
19
neutron
19
helm.sh/helm/v3
19
mercurial
18
genix/cms
18
cobbler
18
com.vaadin:vaadin-bom
18
org.springframework:spring-core
18
forkcms/forkcms
18
org.apache.jspwiki:jspwiki-main
18
golang.org/x/net
18
mindsdb
18
calibreweb
17
github.com/traefik/traefik/v3
17
openmage/magento-lts
17
notebook
17
yetiforce/yetiforce-crm
17
cryptography
17
org.apache.inlong:manager-pojo
17
OctoPrint
17
org.apache.geode:geode-core
17
francoisjacquet/rosariosis
17
github.com/openfga/openfga
17
Microsoft.AspNetCore.App.Runtime.win-arm64
17
ezsystems/ezpublish-kernel
17
cakephp/cakephp
17
Microsoft.AspNetCore.App.Runtime.win-arm
17
opencart/opencart
17
lollms
16
org.apache.activemq:activemq-client
16
rusqlite
16
PaddlePaddle
16
paddlepaddle
16
Microsoft.AspNetCore.App.Runtime.linux-arm
16
ghost
16
sequelize
16
Microsoft.AspNetCore.App.Runtime.linux-arm64
16
org.apache.dubbo:dubbo
16
org.apache.ranger:ranger
16
tinymce
16
phpbb/phpbb
16
org.apache.tomcat:tomcat-coyote
16
Microsoft.AspNetCore.App.Runtime.osx-x64
15
pimcore/admin-ui-classic-bundle
15
github.com/containerd/containerd
15
silverstripe/cms
15
ckeditor4
15
undici
15
october/system
15
aiohttp
15
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/moodle/moodle
243
https://github.com/xwiki/xwiki-platform
221
https://github.com/chakra-core/ChakraCore
214
https://github.com/jenkinsci/jenkins
178
https://github.com/liferay/liferay-portal
139
https://github.com/django/django
119
https://github.com/pimcore/pimcore
116
https://github.com/apache/tomcat
114
https://github.com/apache/airflow
104
https://github.com/TYPO3/typo3
94
https://github.com/microweber/microweber
90
https://github.com/keycloak/keycloak
86
https://github.com/librenms/librenms
74
https://github.com/rails/rails
70
https://github.com/FasterXML/jackson-databind
70
https://github.com/thorsten/phpmyfaq
69
https://github.com/usememos/memos
68
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/kubernetes/kubernetes
66
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/ansible/ansible
59
https://github.com/python-pillow/Pillow
52
https://github.com/spring-projects/spring-framework
51
https://github.com/argoproj/argo-cd
50
https://github.com/grafana/grafana
47
https://github.com/apache/struts
47
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/vyperlang/vyper
44
https://github.com/concretecms/concretecms
44
https://github.com/rancher/rancher
44
https://github.com/shopware/platform
43
https://github.com/saltstack/salt
42
https://github.com/ikus060/rdiffweb
42
https://github.com/craftcms/cms
41
https://github.com/directus/directus
41
https://github.com/mmaitre314/picklescan
39
https://github.com/star7th/showdoc
39
https://github.com/mattermost/mattermost
39
https://github.com/magento/magento2
38
https://github.com/openstack/nova
38
https://github.com/mantisbt/mantisbt
38
https://github.com/gradio-app/gradio
38
https://github.com/dotnet/runtime
37
https://github.com/x-stream/xstream
37
https://github.com/plone/Products.CMFPlone
37
https://github.com/octobercms/october
36
https://github.com/mlflow/mlflow
35
https://github.com/umbraco/Umbraco-CMS
35
https://github.com/sparklemotion/nokogiri
35
https://github.com/shopware/shopware
35
https://github.com/answerdev/answer
34
https://github.com/apache/activemq
34
https://github.com/parse-community/parse-server
33
https://github.com/go-gitea/gitea
32
https://github.com/opencv/opencv
32
https://github.com/matrix-org/synapse
32
https://github.com/apache/inlong
31
https://github.com/PaddlePaddle/Paddle
31
https://github.com/cilium/cilium
31
https://github.com/contao/contao
30
https://github.com/snipe/snipe-it
30
https://github.com/gogs/gogs
28
https://github.com/electron/electron
28
https://github.com/CVEProject/cvelist
28
https://github.com/openstack/keystone
28
https://github.com/baserproject/basercms
26
https://github.com/geoserver/geoserver
26
https://github.com/netty/netty
26
https://github.com/froxlor/froxlor
26
https://github.com/apache/nifi
26
https://github.com/github/advisory-database
26
https://github.com/traefik/traefik
25
https://github.com/strapi/strapi
25
https://github.com/pmmp/PocketMine-MP
25
https://github.com/vercel/next.js
25
https://github.com/surrealdb/surrealdb
25
https://github.com/getgrav/grav
24
https://github.com/apache/cxf
24
https://github.com/bcgit/bc-java
24
https://github.com/langchain-ai/langchain
24
https://github.com/rack/rack
24
https://github.com/PrestaShop/PrestaShop
23
https://github.com/run-llama/llama_index
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/eclipse/jetty.project
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/pyload/pyload
23
https://github.com/moby/moby
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/denoland/deno
22
https://github.com/jenkinsci/script-security-plugin
22
https://github.com/vllm-project/vllm
22
https://github.com/bytecodealliance/wasmtime
22
https://github.com/getkirby/kirby
22
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/nervosnetwork/ckb
22
https://github.com/zitadel/zitadel
22
https://github.com/hashicorp/consul
22
https://github.com/helm/helm
22
https://github.com/goharbor/harbor
21
https://github.com/OpenZeppelin/openzeppelin-contracts
21
https://github.com/undertow-io/undertow
21
https://github.com/laravel/framework
21
https://github.com/dnnsoftware/Dnn.Platform
20
https://github.com/FlowiseAI/Flowise
20
https://github.com/OpenNMS/opennms
20
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/funadmin/funadmin
20
https://github.com/jeecgboot/jeecg-boot
20
https://github.com/ethyca/fides
20
https://github.com/TYPO3-CMS/core
19
https://github.com/backstage/backstage
19
https://github.com/intelliants/subrion
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/cloudfoundry/uaa
19
https://github.com/huggingface/transformers
19
https://github.com/hashicorp/vault
19
https://github.com/alkacon/opencms-core
19
https://github.com/opencast/opencast
19
https://github.com/rubygems/rubygems
18
https://github.com/vaadin/platform
18
https://github.com/apache/camel
18
https://github.com/mindsdb/mindsdb
17
https://github.com/OpenMage/magento-lts
17
https://github.com/liufee/cms
17
https://github.com/openfga/openfga
17
https://github.com/apache/kylin
17
https://github.com/containerd/containerd
17
https://github.com/vantage6/vantage6
17
https://github.com/ethereum/go-ethereum
17
https://github.com/pyca/cryptography
16
https://github.com/forkcms/forkcms
16
https://github.com/rusqlite/rusqlite
16
https://github.com/tinymce/tinymce
16
https://github.com/quarkusio/quarkus
16
https://github.com/hashicorp/nomad
16
https://github.com/etcd-io/etcd
16
https://github.com/sequelize/sequelize
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/dotnet/aspnetcore
15
https://github.com/puppetlabs/puppet
15
https://github.com/dompdf/dompdf
15
https://github.com/OPCFoundation/UA-.NETStandard
15
https://github.com/vitejs/vite
15
https://github.com/aio-libs/aiohttp
15
https://github.com/nodejs/undici
15
https://github.com/containers/podman
15
https://github.com/ckeditor/ckeditor4
15
https://github.com/zendframework/zendframework
15
https://github.com/cobbler/cobbler
15
https://github.com/centreon/centreon
15
https://github.com/drupal/core
15
https://github.com/xuxueli/xxl-job
15
https://github.com/decidim/decidim
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/golang/go
14
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/Graylog2/graylog2-server
14
https://github.com/apache/zeppelin
14
https://github.com/TryGhost/Ghost
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/janeczku/calibre-web
14
https://github.com/apache/superset
14
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/urllib3/urllib3
14
https://github.com/spring-projects/spring-security
14
https://github.com/cosmos/cosmos-sdk
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/publify/publify
14
https://github.com/thorsten/phpMyFAQ
14
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/twisted/twisted
14
https://github.com/laurent22/joplin
13
https://github.com/OpenRefine/OpenRefine
13
https://github.com/opencontainers/runc
13
https://github.com/dromara/hutool
13
https://github.com/modoboa/modoboa
13
https://github.com/apache/dolphinscheduler
13
https://github.com/1Panel-dev/1Panel
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/ming-soft/MCMS
13
https://github.com/VulnSageAgent/PoCs
12
https://github.com/getsentry/sentry
12
https://github.com/zenml-io/zenml
12
https://github.com/modxcms/revolution
12
https://github.com/nats-io/nats-server
12
https://github.com/wagtail/wagtail
12
https://github.com/NodeBB/NodeBB
12
https://github.com/patriksimek/vm2
12
https://github.com/openstack/glance
12
https://sourceforge.net/projects/phpmyadmin.sourceforge.net
12
https://github.com/YesWiki/yeswiki
12
https://github.com/puma/puma
12
https://github.com/matrix-org/matrix-js-sdk
12