Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories

Browse all Security Advisories for

Loading...
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNtMnItcTh4My14bWY3
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.Kestrel.Core, Microsoft.AspNetCore.Server.Kestrel.Transport.Abstractions, and Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv
Ecosystems: nuget
Packages: Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv, Microsoft.AspNetCore.Server.Kestrel.Transport.Abstractions, Microsoft.AspNetCore.Server.Kestrel.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjOGcteGh3NS02eDQ2
Improper Certificate Validation in Microsoft .NET Framework components
Ecosystems: nuget
Packages: System.ServiceModel.Duplex, System.ServiceModel.Security, System.Private.ServiceModel, System.ServiceModel.NetTcp, System.ServiceModel.Http, System.ServiceModel.Primitives, Microsoft.NETCore.UniversalWindowsPlatform
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNoNnAtNGpjbS1oOHZo
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc and Microsoft.AspNetCore.Mvc.Core
Ecosystems: nuget
Packages: Microsoft.AspNetCore.Mvc.WebApiCompatShim, Microsoft.AspNetCore.Mvc.ViewFeatures, Microsoft.AspNetCore.Mvc.TagHelpers, Microsoft.AspNetCore.Mvc.Razor, Microsoft.AspNetCore.Mvc.Razor.Host, Microsoft.AspNetCore.Mvc.Localization, Microsoft.AspNetCore.Mvc.Formatters.Xml, Microsoft.AspNetCore.Mvc.Formatters.Json, Microsoft.AspNetCore.Mvc.DataAnnotations, Microsoft.AspNetCore.Mvc.Cors, Microsoft.AspNetCore.Mvc.ApiExplorer, Microsoft.AspNetCore.Mvc.Abstractions, System.Net.WebSockets.Client, System.Net.Security, System.Net.Http.WinHttpHandler, System.Text.Encodings.Web, System.Net.Http, Microsoft.AspNetCore.Mvc.Core, Microsoft.AspNetCore.Mvc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdyNGMtNXJxNi1jZ2gz
OPC UA applications can allow a remote attacker to determine a Server's private key
Ecosystems: nuget
Packages: OPCFoundation.NetStandard.Opc.Ua
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW12MnItcTRnNS1qOHE1
Denial of service in ASP.NET Core
Ecosystems: nuget
Packages: Microsoft.AspNetCore.DataProtection.AzureStorage, Microsoft.AspNetCore.All, Microsoft.Data.OData
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4aDctNHYydy0zNnE2
ASP.NET Core fails to properly validate web requests
Ecosystems: nuget
Packages: System.Net.Http.WinHttpHandler, Microsoft.AspNetCore.Mvc.WebApiCompatShim, Microsoft.AspNetCore.Mvc.ViewFeatures, Microsoft.AspNetCore.Mvc.TagHelpers, Microsoft.AspNetCore.Mvc.Razor, Microsoft.AspNetCore.Mvc.Razor.Host, Microsoft.AspNetCore.Mvc.Localization, Microsoft.AspNetCore.Mvc.Formatters.Xml, Microsoft.AspNetCore.Mvc.Formatters.Json, Microsoft.AspNetCore.Mvc.DataAnnotations, Microsoft.AspNetCore.Mvc.Cors, Microsoft.AspNetCore.Mvc.ApiExplorer, Microsoft.AspNetCore.Mvc.Abstractions, System.Net.WebSockets.Client, System.Net.Security, System.Text.Encodings.Web, System.Net.Http, Microsoft.AspNetCore.Mvc.Core, Microsoft.AspNetCore.Mvc
Source: GitHub Advisory Database
Blast Radius: 10.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4ZjQtMnc0cC1taGpj
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc
Ecosystems: nuget
Packages: Microsoft.AspNetCore.Mvc.WebApiCompatShim, Microsoft.AspNetCore.Mvc.ViewFeatures, Microsoft.AspNetCore.Mvc.TagHelpers, Microsoft.AspNetCore.Mvc.Razor, Microsoft.AspNetCore.Mvc.Razor.Host, Microsoft.AspNetCore.Mvc.Localization, Microsoft.AspNetCore.Mvc.Formatters.Xml, Microsoft.AspNetCore.Mvc.Formatters.Json, Microsoft.AspNetCore.Mvc.DataAnnotations, Microsoft.AspNetCore.Mvc.Cors, Microsoft.AspNetCore.Mvc.ApiExplorer, Microsoft.AspNetCore.Mvc.Abstractions, System.Net.WebSockets.Client, System.Net.Security, System.Net.Http.WinHttpHandler, System.Text.Encodings.Web, System.Net.Http, Microsoft.AspNetCore.Mvc.Core, Microsoft.AspNetCore.Mvc
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFocWYtZ2hnaC14Mm00
High severity vulnerability that affects Microsoft.AspNetCore.Mvc
Ecosystems: nuget
Packages: DisCatSharp, Microsoft.AspNetCore.Mvc.WebApiCompatShim, Microsoft.AspNetCore.Mvc.ViewFeatures, Microsoft.AspNetCore.Mvc.TagHelpers, Microsoft.AspNetCore.Mvc.Razor, Microsoft.AspNetCore.Mvc.Razor.Host, Microsoft.AspNetCore.Mvc.Localization, Microsoft.AspNetCore.Mvc.Formatters.Xml, Microsoft.AspNetCore.Mvc.Formatters.Json, Microsoft.AspNetCore.Mvc.DataAnnotations, Microsoft.AspNetCore.Mvc.Cors, Microsoft.AspNetCore.Mvc.ApiExplorer, Microsoft.AspNetCore.Mvc.Abstractions, System.Net.WebSockets.Client, System.Net.Security, System.Net.Http.WinHttpHandler, System.Text.Encodings.Web, System.Net.Http, Microsoft.AspNetCore.Mvc.Core, Microsoft.AspNetCore.Mvc
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM2NXAtOTZxdi14cjdn
ASP.NET Core allow an elevation of privilege
Ecosystems: nuget
Packages: Microsoft.AspNetCore.Server.Kestrel.Core, Microsoft.AspNetCore.HttpOverrides
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZodmgtNTI4cS1mZjNw
Security feature bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated
Ecosystems: nuget
Packages: Microsoft.AspNetCore.Identity
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozNzgtNm1tdy1ocWZy
Denial of service vulnerability exists when System.IO.Pipelines improperly handles requests
Ecosystems: nuget
Packages: System.IO.Pipelines, Microsoft.AspNetCore.App, Microsoft.AspNetCore.All
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM1aGMteDJjdy0yajR2
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents
Ecosystems: nuget
Packages: System.Security.Cryptography.Xml
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4MnAtNTN3cS1jeG1q
High severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua
Ecosystems: nuget
Packages: OPCFoundation.NetStandard.Opc.Ua
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgzMzYtbXhwNi12NWg5
Moderate severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua
Ecosystems: nuget
Packages: OPCFoundation.NetStandard.Opc.Ua
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4cjMtcmd3aC1wdzIy
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents
Ecosystems: maven
Packages: org.apache.qpid:apache-qpid-broker-j
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY1Y2YtZjdweC14cG1o
Moderate severity vulnerability that affects org.apache.qpid:proton-j
Ecosystems: maven
Packages: org.apache.qpid:proton-j
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqOWgtbXdocS04dmht
Improper Input Validation in org.apache.qpid:qpid-broker
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker
Source: GitHub Advisory Database
Blast Radius: 15.3
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2NmMtaDg1My1ncXcy
AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache Qpid Java before 6.0.3 might allow remote attackers to bypass authentication
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker-plugins-amqp-1-0-protocol, org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol
Source: GitHub Advisory Database
Blast Radius: 19.9
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5aDQtZzhwNS1qZ3E2
Moderate severity vulnerability that affects org.apache.juddi:juddi-client
Ecosystems: maven
Packages: org.apache.juddi:juddi-client
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdnOW0tZmozdi1yNThj
REST Plugin in Apache Struts uses an XStreamHandler with an instance of XStream for deserialization without any type filtering
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 18.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg1eDctM3Y4NS13cGM0
Apache Struts allows entering a custom URL in a form field if built-in URLValidator is used
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ3eGotNm01bS1ycnZo
The REST Plugin in Apache Struts is using an outdated XStream library
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtcjUtaDI4Zy0zNnF4
Spring AOP functionality (Struts) vulnerable to DoS attack
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 28.4
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlncDctanZtMi1yNG14
Apache Struts Improper Input Validation vulnerability
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhjcm0tcXBwOC1oY3c0
Moderate severity vulnerability that affects org.apache.struts:struts2-rest-plugin
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 14.4
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmeDktNWh4OC1jcmht
Apache Struts 2.0.1 uses an unintentional expression in a Freemarker tag instead of string literal
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4Y3ItMnBoNS1mcnI5
Apache Struts REST Plugin can potentially allow a DoS attack
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 17.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXgycmctZm1jdi1jcnE1
DNN (aka DotNetNuke) has Remote Code Execution via a cookie
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVjNjYteDR3bS1yamZ4
Cross-site scripting (XSS) vulnerability in the user-profile biography section in DotNetNuke (DNN)
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4ZjctaDQ0NC05N3c0
The installation wizard in DotNetNuke (DNN) allows privilege escalation
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3Nm0tZjVjeC04cmc0
Moderate severity vulnerability that affects DotNetNuke.Core
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnZ2otZnZ2My1jcXd2
FasterXML jackson-databind allows unauthenticated remote code execution
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhxajctajhqNS1mMnhy
Bouncy Castle has a flaw in the Low-level interface to RSA key pair generator
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 22.5
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13Y3gtNTMyZy04cHEz
Access and integrity issue within Eclipse Jetty
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 39.9
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWYyNngtcHI5Ni12dzg2
Moderate severity vulnerability that affects org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlnY20tZjR4My04anB3
Spring Framework Cross Site Tracing (XST)
Ecosystems: maven
Packages: org.springframework:spring-web
Source: GitHub Advisory Database
Blast Radius: 30.6
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5OGotNWNjOC1jbWY1
ZipSlip in org.apache.storm:storm-core
Ecosystems: maven
Packages: org.apache.storm:storm-core
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhwd3AtcnEzeC14NnY3
Critical severity vulnerability that affects recurly-api-client
Ecosystems: nuget
Packages: recurly-api-client
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJyM2MtZjU1di1xaHY1
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents
Ecosystems: nuget
Packages: System.Security.Cryptography.Xml
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2cHItOWNyNi1xNXY3
Apache Camel's camel-snakeyaml component is vulnerable to Java object de-serialization
Ecosystems: maven
Packages: org.apache.camel:camel-snakeyaml
Source: GitHub Advisory Database
Blast Radius: 16.3
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF4eHgtMnBwNy01aG14
jackson-databind is vulnerable to a deserialization flaw
Ecosystems: maven
Packages: com.fasterxml.jackson.core:jackson-databind
Source: GitHub Advisory Database
Blast Radius: 52.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc4ajYtbTRwNy01cmZx
High severity vulnerability that affects DotNetNuke.Core
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTczNzgtNjI2OC00Mjc4
High severity vulnerability that affects DotNetZip
Ecosystems: nuget
Packages: DotNetZip
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZwY2MtM3JmeC00Z3Bt
Dom4j contains a XML Injection vulnerability
Ecosystems: maven
Packages: dom4j:dom4j, org.dom4j:dom4j
Source: GitHub Advisory Database
Blast Radius: 33.5
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJwY2gtY3FqOS1oNjVy
High severity vulnerability that affects YamlDotNet and YamlDotNet.Signed
Ecosystems: nuget
Packages: YamlDotNet.Signed, YamlDotNet
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0Y20teDJxNS04MjI1
dojox vulnerable to unescaped string injection
Ecosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 28.3
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OTYtbW0yZy1jOG03
Next.js has cross site scripting (XSS) vulnerability via the 404 or 500 /_error page
Ecosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 33.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFodjktNzI4ci02anFn
ReDoS via long string of semicolons in tough-cookie
Ecosystems: npm
Packages: tough-cookie
Source: GitHub Advisory Database
Blast Radius: 33.1
Published: almost 6 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OHctMnhjcC14ZzU5
Insecure use of temporary files in Phusion passenger
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3ajctcDVqcS0yNmZm
Insecure use of temporary files in passenger
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ4d3YtOTUzcC03cXBm
Phusion Passenger allows remote attackers to spoof headers
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5NGYtcnc0NC1xcnc1
mongose is malware
Ecosystems: npm
Packages: mongose
Source: GitHub Advisory Database
Blast Radius: 21.7
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo2OHItMjNoai14Zjlj
node-openssl is malware
Ecosystems: npm
Packages: node-openssl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThwNXAtZmY3eC1odzdx
Cross-Site Scripting in public
Ecosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN4OG0tOHhteC1xOHYz
Denial of Service in memjs
Ecosystems: npm
Packages: memjs
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2NGMtcHhqai1oODY2
Ansible does not verify that the server hostname matches a domain name in certificates
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJoNngtcXZnNy1ycm1q
Link Following in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 32.5
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4NnEtNTQyMy13NXY5
Ansible fails to cache SSH host keys
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg0Y20tbTM2aC1jNnFq
Improper Input Validation in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNtd3gtOW0yaC14N3Y0
Ansible apt_key module does not properly verify key fingerprint
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 31.3
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp3Y2Mtajc4dy1qNzN3
Ansible exposes sensitive data in log files and on the terminal
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 24.6
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpnNGYtanFtNS00bWdx
Ansible fails to properly sanitize fact variables sent from the Ansible controller
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05NTYtZnJmNC1tMndy
Ansible is vulnerable to an improper input validation in Ansible's handling of data sent from client systems
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 33.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxMnAtZmo0OS12cHhq
In marshmallow library the schema "only" option treats an empty list as implying no "only" option
Ecosystems: pypi
Packages: marshmallow
Source: GitHub Advisory Database
Blast Radius: 23.1
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAyOG0tMzRmNi05Njdx
PyOpenSSL Use-After-Free vulnerability
Ecosystems: pypi
Packages: pyopenssl
Source: GitHub Advisory Database
Blast Radius: 33.3
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJyY20tcGhjOS0zOTQ1
Pyopenssl Incorrect Memory Management
Ecosystems: pypi
Packages: pyopenssl
Source: GitHub Advisory Database
Blast Radius: 24.3
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWYyajYtd3JoaC12MjVt
Paramiko Authentication Bypass vulnerability
Ecosystems: pypi
Packages: paramiko
Source: GitHub Advisory Database
Blast Radius: 39.5
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdnbXgtNTJwaC1xcWN3
Qutebrowser CSRF Vulnerability
Ecosystems: pypi
Packages: qutebrowser
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxamctd2htbS04Z3Y2
Denial of Service via malformed accept-encoding header in hapi
Ecosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 33.9
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnMzMtZjI2Mi14anA0
Cryptographically Weak PRNG in randomatic
Ecosystems: npm
Packages: randomatic
Source: GitHub Advisory Database
Blast Radius: 31.9
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh3NGgtM2NtMy0ycG0y
Out-of-bounds Read in atob
Ecosystems: npm
Packages: atob
Source: GitHub Advisory Database
Blast Radius: 55.2
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhyMnYtMzk1Mi02MzNx
Prototype Pollution in deep-extend
Ecosystems: npm
Packages: deep-extend
Source: GitHub Advisory Database
Blast Radius: 63.3
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4bTItcjM0Zi1xbWM1
Regular Expression Denial of Service in minimatch
Ecosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5Y20tcDN3Ni14dnIz
Denial-of-Service Extended Event Loop Blocking in qs
Ecosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3aHItajRtai1qMnc2
Verification Bypass in jsonwebtoken
Ecosystems: npm
Packages: jsonwebtoken
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdtYzUtY2hocC1mbWMz
Regular Expression Denial of Service in negotiator
Ecosystems: npm
Packages: negotiator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2MmYtYzJ3Zy1tOGM4
Denial of Service in protobufjs
Ecosystems: npm
Packages: protobufjs
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OTMtNDVyMy1wNjZw
Prototype Pollution in merge-options
Ecosystems: npm
Packages: merge-options
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: almost 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd4NWcteGN4ai1jeDJ3
smart_proxy_dynflow gem authentication bypass in Foreman remote execution feature
Ecosystems: rubygems
Packages: smart_proxy_dynflow
Source: GitHub Advisory Database
Blast Radius: 9.4
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVoZzMtNmMyZi1mM3dy
Django open redirect
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJtOGgtZmdyOC0ycTl3
Pivotal Spring Framework Paths provided to the ResourceServlet were not properly sanitized
Ecosystems: maven
Packages: org.springframework:spring-webmvc
Source: GitHub Advisory Database
Blast Radius: 40.2
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5Z2MtNmN3Ni00dmNo
Spark allows remote attackers to read arbitrary files via a .. (dot dot) in the URI
Ecosystems: maven
Packages: com.sparkjava:spark-core
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmNGotajI3Mi1majg2
Django vulnerable to information leakage in AuthenticationForm
Ecosystems: pypi
Packages: Django, django
Source: GitHub Advisory Database
Blast Radius: 38.0
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY0NngtbTM2My05cmg0
node-opensl is malware
Ecosystems: npm
Packages: node-opensl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZteDMtM3ZxZy1ocHAy
Django allows unprivileged users to read the password hashes of arbitrary accounts
Ecosystems: pypi
Packages: django
Source: GitHub Advisory Database
Blast Radius: 24.8
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmaDItNmY3cS1ncjg2
Cross-Site Scripting in sexstatic
Ecosystems: npm
Packages: sexstatic
Source: GitHub Advisory Database
Blast Radius: 9.3
Published: almost 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR4amgtbTNxeC00OXdj
Jekyll allows attackers to access arbitrary files by specifying a symlink
Ecosystems: rubygems
Packages: jekyll
Source: GitHub Advisory Database
Blast Radius: 42.7
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTczNzUtdmpyMi0zZzd3
Cross-Site Scripting in glance
Ecosystems: npm
Packages: glance
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: almost 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3Y2gtZndteC1jZjQ3
Directory Traversal in augustine
Ecosystems: npm
Packages: augustine
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWMydnItMmM4OS1waDg4
Downloads Resources over HTTP in node-bsdiff-android
Ecosystems: npm
Packages: node-bsdiff-android
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4aG0tM3ZqOS02Y3Fo
apk-parser2 downloads Resources over HTTP
Ecosystems: npm
Packages: apk-parser2
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: about 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW04Y3ItcTkzNS04ajY3
Path Traversal in buttle
Ecosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: about 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwODItMmg5OS0zZnBw
Prototype Pollution in async merge-object
Ecosystems: npm
Packages: merge-object
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN2eG0tZjI5NS14OTU3
Prototype Pollution in merge-recursive
Ecosystems: npm
Packages: merge-recursive
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 6 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtODctNDZ2di1qcXJy
Path Traversal in html-pages
Ecosystems: npm
Packages: html-pages
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp4anItNWg2OS1xdzN3
Heap-based buffer overflow in nokogiri
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY4NXctdmM4NC13eGN4
Doorkeeper contains Cross-site Request Forgery
Ecosystems: rubygems
Packages: doorkeeper
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdocDIteHdwai05NWpx
Denial of service or RCE from libxml2 and libxslt
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: about 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnODctZmY5cS12ODQ3
websockets is vulnerable to denial of service by memory exhaustion
Ecosystems: pypi
Packages: websockets
Source: GitHub Advisory Database
Blast Radius: 33.6
Published: about 6 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0NjItcTd4Ny1nMng0
js-bson vulnerable to REDoS
Ecosystems: npm
Packages: bson
Source: GitHub Advisory Database
Blast Radius: 44.2
Published: about 6 years ago
Statistics
Advisories: 20,086
Packages: 8,833
Repositories: 5,385
Ecosystems: 12
Filter by Severity
Moderate 8,749 High 6,914 Critical 2,986 Low 1,112
Filter by Ecosystem
maven 5,756 packagist 4,466 pypi 4,208 npm 3,733 go 2,194 nuget 1,508 rubygems 857 cargo 849 swift 32 hex 30 actions 19 pub 8
Filter by Package
tensorflow 433 tensorflow-gpu 425 tensorflow-cpu 422 moodle/moodle 343 Microsoft.ChakraCore 247 magento/community-edition 215 org.jenkins-ci.main:jenkins-core 191 typo3/cms 174 org.apache.tomcat:tomcat 132 pimcore/pimcore 118 dolibarr/dolibarr 112 typo3/cms-core 106 microweber/microweber 94 drupal/core 92 phpmyadmin/phpmyadmin 92 silverstripe/framework 85 apache-airflow 84 Django 80 drupal/drupal 77 thorsten/phpmyfaq 70 com.fasterxml.jackson.core:jackson-databind 69 symfony/symfony 64 ansible 63 github.com/usememos/memos 63 actionpack 58 concrete5/concrete5 58 django 58 org.apache.struts:struts2-core 55 github.com/mattermost/mattermost/server/v8 55 salt 55 librenms/librenms 54 Plone 52 shopware/platform 52 apache-superset 51 org.keycloak:keycloak-core 50 github.com/grafana/grafana 47 nova 47 mlflow 46 com.liferay.portal:release.portal.bom 45 plone 43 craftcms/cms 43 baserproject/basercms 43 nokogiri 43 rdiffweb 42 Pillow 41 shopware/core 40 showdoc/showdoc 40 intelliants/subrion 39 vyper 38 froxlor/froxlor 38 org.xwiki.platform:xwiki-platform-oldcore 37 org.apache.tomcat.embed:tomcat-embed-core 37 nilsteampassnet/teampass 37 github.com/mattermost/mattermost-server/v6 37 com.jfinal:jfinal 36 mautic/core 36 com.thoughtworks.xstream:xstream 36 org.elasticsearch:elasticsearch 36 matrix-synapse 35 net.mingsoft:ms-mcms 35 moin 35 k8s.io/kubernetes 34 github.com/answerdev/answer 34 github.com/hashicorp/vault 34 zendframework/zendframework1 34 github.com/rancher/rancher 33 org.keycloak:keycloak-services 33 snipe/snipe-it 33 io.undertow:undertow-core 32 org.jenkins-ci.plugins:script-security 32 opencv-python 31 opencv-contrib-python 31 keystone 31 github.com/argoproj/argo-cd 31 shopware/shopware 30 parse-server 30 getgrav/grav 29 github.com/docker/docker 29 github.com/hashicorp/nomad 27 centreon/centreon 27 github.com/argoproj/argo-cd/v2 27 electron 26 openssl-src 26 prestashop/prestashop 26 directus 26 github.com/hashicorp/consul 26 org.apache.solr:solr-core 25 rubygems-update 25 org.keycloak:keycloak-parent 25 gogs.io/gogs 24 github.com/cilium/cilium 24 magento/core 24 mediawiki/core 24 contao/core-bundle 24 org.springframework.security:spring-security-core 24 rack 23 pocketmine/pocketmine-mp 23 org.eclipse.jetty:jetty-server 23 grumpydictator/firefly-iii 23 zendframework/zendframework 23 puppet 23 simplesamlphp/simplesamlphp 23 remdex/livehelperchat 23 org.bouncycastle:bcprov-jdk14 22 ckb 22 org.apache.nifi:nifi 22 getkirby/cms 22 org.apache.openmeetings:openmeetings-parent 21 activerecord 21 @openzeppelin/contracts-upgradeable 21 @openzeppelin/contracts 20 glance 20 org.cloudfoundry.identity:cloudfoundry-identity-server 20 github.com/ethereum/go-ethereum 20 Microsoft.AspNetCore.App.Runtime.win-x64 20 tribalsystems/zenario 20 Microsoft.AspNetCore.App.Runtime.win-x86 20 code.gitea.io/gitea 20 langchain 19 Microsoft.AspNetCore.App.Runtime.win-arm 19 laravel/framework 19 DotNetNuke.Core 19 org.springframework:spring-core 19 org.xwiki.platform:xwiki-platform-web-templates 19 com.liferay.portal:release.dxp.bom 18 com.vaadin:vaadin-bom 18 contao/contao 18 gradio 18 cockpit-hq/cockpit 18 golang.org/x/net 18 mindsdb 18 topthink/framework 18 github.com/goharbor/harbor 18 forkcms/forkcms 18 github.com/traefik/traefik/v2 17 francoisjacquet/rosariosis 17 cakephp/cakephp 17 PaddlePaddle 17 symfony/security 17 opencart/opencart 17 ezsystems/ezpublish-kernel 17 org.apache.geode:geode-core 17 Microsoft.AspNetCore.App.Runtime.win-arm64 17 genix/cms 17 mercurial 17 Microsoft.AspNetCore.App.Runtime.linux-arm 17 Microsoft.AspNetCore.App.Runtime.linux-arm64 17 Microsoft.AspNetCore.App.Runtime.linux-musl-x64 17 Microsoft.AspNetCore.App.Runtime.linux-x64 17 Microsoft.AspNetCore.App.Runtime.osx-x64 17 helm.sh/helm/v3 17 cobbler 17 next 17 Microsoft.AspNetCore.App.Runtime.linux-musl-arm64 16 org.bouncycastle:bcprov-jdk15 16 org.apache.dubbo:dubbo 16 org.apache.activemq:activemq-client 16 neutron 16 cryptography 16 pillow 16 rusqlite 16 openmage/magento-lts 16 wasmtime 16 sequelize 16 tinymce 16 org.apache.jspwiki:jspwiki-main 16 yetiforce/yetiforce-crm 16 notebook 16 org.apache.struts.xwork:xwork-core 15 ec-cube/ec-cube 15 ethyca-fides 15 pyload-ng 15 ghost 15 smarty/smarty 15 ckeditor4 15 paddlepaddle 15 october/system 15 modoboa 14 publify_core 14 swagger-ui 14 org.apache.inlong:manager-pojo 14 github.com/zitadel/zitadel 14 phpmailer/phpmailer 14 org.xwiki.platform:xwiki-platform-web 14 pyftpdlib 14 github.com/containerd/containerd 14 activesupport 14 symfony/security-http 14 silverstripe/cms 14 typo3/cms-backend 14 github.com/nats-io/nats-server/v2 14 bolt/bolt 14 feehi/cms 14 github.com/opencontainers/runc 13 github.com/mattermost/mattermost-server 13 studio-42/elfinder 13 passenger 13 undici 13 org.apache.cxf:cxf 13 impresscms/impresscms 13
Filter by Repository
https://github.com/tensorflow/tensorflow 433 https://github.com/moodle/moodle 214 https://github.com/chakra-core/ChakraCore 214 https://github.com/xwiki/xwiki-platform 183 https://github.com/jenkinsci/jenkins 150 https://github.com/pimcore/pimcore 113 https://github.com/django/django 111 https://github.com/apache/airflow 98 https://github.com/apache/tomcat 97 https://github.com/microweber/microweber 88 https://github.com/TYPO3/typo3 72 https://github.com/FasterXML/jackson-databind 70 https://github.com/thorsten/phpmyfaq 69 https://github.com/keycloak/keycloak 67 https://github.com/silverstripe/silverstripe-framework 64 https://github.com/usememos/memos 63 https://github.com/symfony/symfony 57 https://github.com/ansible/ansible 56 https://github.com/Dolibarr/dolibarr 56 https://github.com/rails/rails 55 https://github.com/python-pillow/Pillow 52 https://github.com/kubernetes/kubernetes 50 https://github.com/librenms/librenms 46 https://github.com/apache/struts 46 https://github.com/spring-projects/spring-framework 43 https://github.com/shopware/platform 43 https://github.com/ikus060/rdiffweb 42 https://github.com/argoproj/argo-cd 42 https://github.com/grafana/grafana 40 https://github.com/concretecms/concretecms 39 https://github.com/vyperlang/vyper 38 https://github.com/star7th/showdoc 38 https://github.com/phpmyadmin/phpmyadmin 38 https://github.com/magento/magento2 38 https://github.com/openstack/nova 37 https://github.com/plone/Products.CMFPlone 37 https://github.com/x-stream/xstream 36 https://github.com/octobercms/october 35 https://github.com/answerdev/answer 34 https://github.com/saltstack/salt 34 https://github.com/mautic/mautic 34 https://github.com/apache/activemq 33 https://github.com/opencv/opencv 32 https://github.com/sparklemotion/nokogiri 32 https://github.com/go-gitea/gitea 32 https://github.com/matrix-org/synapse 32 https://github.com/craftcms/cms 31 https://github.com/PaddlePaddle/Paddle 31 https://github.com/parse-community/parse-server 30 https://github.com/mlflow/mlflow 30 https://github.com/snipe/snipe-it 29 https://github.com/CVEProject/cvelist 28 https://github.com/rancher/rancher 28 https://github.com/shopware/shopware 28 https://github.com/openstack/keystone 28 https://github.com/dotnet/runtime 28 https://github.com/apache/inlong 27 https://github.com/froxlor/froxlor 26 https://github.com/directus/directus 25 https://github.com/contao/contao 25 https://github.com/electron/electron 25 https://github.com/gogs/gogs 24 https://github.com/cilium/cilium 24 https://github.com/TYPO3/TYPO3.CMS 24 https://github.com/getgrav/grav 24 https://github.com/strapi/strapi 24 https://github.com/eclipse/jetty.project 23 https://github.com/pmmp/PocketMine-MP 23 https://github.com/github/advisory-database 23 https://github.com/firefly-iii/firefly-iii 23 https://github.com/livehelperchat/livehelperchat 23 https://github.com/nervosnetwork/ckb 22 https://github.com/apache/nifi 22 https://github.com/baserproject/basercms 22 https://github.com/PrestaShop/PrestaShop 22 https://github.com/jenkinsci/script-security-plugin 21 https://github.com/apache/cxf 21 https://github.com/umbraco/Umbraco-CMS 20 https://github.com/OpenZeppelin/openzeppelin-contracts 20 https://github.com/netty/netty 20 https://github.com/OpenNMS/opennms 20 https://github.com/simplesamlphp/simplesamlphp 20 https://github.com/jeecgboot/jeecg-boot 20 https://github.com/hashicorp/consul 19 https://github.com/getkirby/kirby 19 https://github.com/bcgit/bc-java 19 https://github.com/nilsteampassnet/teampass 19 https://github.com/cloudfoundry/uaa 19 https://github.com/langchain-ai/langchain 19 https://github.com/helm/helm 18 https://github.com/geoserver/geoserver 18 https://github.com/goharbor/harbor 18 https://github.com/rubygems/rubygems 18 https://github.com/intelliants/subrion 18 https://github.com/rack/rack 18 https://github.com/nilsteampassnet/TeamPass 18 https://github.com/moby/moby 17 https://github.com/bytecodealliance/wasmtime 17 https://github.com/mindsdb/mindsdb 17 https://github.com/liufee/cms 17 https://github.com/vaadin/platform 17 https://github.com/traefik/traefik 17 https://github.com/opencast/opencast 16 https://github.com/ethereum/go-ethereum 16 https://github.com/gradio-app/gradio 16 https://github.com/yetiforcecompany/yetiforcecrm 16 https://github.com/sequelize/sequelize 16 https://github.com/rusqlite/rusqlite 16 https://github.com/etcd-io/etcd 16 https://github.com/forkcms/forkcms 16 https://github.com/OpenMage/magento-lts 16 https://github.com/tinymce/tinymce 16 https://github.com/hashicorp/vault 16 https://github.com/TYPO3-CMS/core 16 https://github.com/laravel/framework 15 https://github.com/apache/camel 15 https://github.com/zendframework/zendframework 15 https://github.com/PHPMailer/PHPMailer 15 https://github.com/pyca/cryptography 15 https://github.com/vantage6/vantage6 15 https://github.com/undertow-io/undertow 15 https://github.com/denoland/deno 15 https://github.com/centreon/centreon 15 https://github.com/pyload/pyload 15 https://github.com/backstage/backstage 15 https://github.com/ethyca/fides 15 https://github.com/puppetlabs/puppet 15 https://github.com/xuxueli/xxl-job 14 https://github.com/zitadel/zitadel 14 https://github.com/containerd/containerd 14 https://github.com/cockpit-hq/cockpit 14 https://github.com/cobbler/cobbler 14 https://github.com/ckeditor/ckeditor4 14 https://github.com/mattermost/mattermost 14 https://github.com/twisted/twisted 14 https://github.com/vercel/next.js 13 https://github.com/publify/publify 13 https://github.com/quarkusio/quarkus 13 https://github.com/golang/go 13 https://github.com/hashicorp/nomad 13 https://github.com/ming-soft/MCMS 13 https://github.com/dotnet/aspnetcore 13 https://github.com/nodejs/undici 13 https://github.com/modoboa/modoboa 13 https://github.com/decidim/decidim 13 https://github.com/TryGhost/Ghost 13 https://github.com/dromara/hutool 13 https://github.com/swagger-api/swagger-ui 13 https://github.com/apache/dolphinscheduler 13 https://github.com/dompdf/dompdf 13 https://github.com/pimcore/admin-ui-classic-bundle 12 https://github.com/urllib3/urllib3 12 https://github.com/smarty-php/smarty 12 https://github.com/patriksimek/vm2 12 https://github.com/wagtail/wagtail 12 https://github.com/aio-libs/aiohttp 12 https://github.com/centreon/centreon-archived 12 https://github.com/1Panel-dev/1Panel 12 https://github.com/apache/kylin 12 https://github.com/laurent22/joplin 12 https://github.com/openfga/openfga 12 https://github.com/opencontainers/runc 12 https://github.com/Sylius/Sylius 11 https://github.com/WWBN/AVideo 11 https://github.com/puma/puma 11 https://github.com/containers/podman 11 https://github.com/nats-io/nats-server 11 https://github.com/igniterealtime/Openfire 11 https://github.com/dpgaspar/Flask-AppBuilder 11 https://github.com/janeczku/calibre-web 11 https://github.com/NodeBB/NodeBB 11 https://github.com/cloudflare/cfrpki 11 https://github.com/vaadin/flow 11 https://github.com/thorsten/phpMyFAQ 11 https://github.com/drupal/core 11 https://github.com/OPCFoundation/UA-.NETStandard 11 https://github.com/openstack/glance 11 https://github.com/ezsystems/ezpublish-kernel 11 https://github.com/Studio-42/elFinder 11 https://github.com/top-think/framework 11 https://github.com/scrapy/scrapy 11 https://github.com/yiisoft/yii2 11 https://github.com/onionshare/onionshare 11 https://github.com/cakephp/cakephp 11 https://github.com/nocodb/nocodb 10 https://github.com/greenpau/caddy-security 10 https://github.com/cri-o/cri-o 10 https://github.com/jenkinsci/git-plugin 10 https://github.com/zopefoundation/Zope 10 https://github.com/getsentry/sentry 10 https://github.com/pomerium/pomerium 10 https://github.com/DSpace/DSpace 10 https://github.com/surrealdb/surrealdb 10 https://github.com/keystonejs/keystone 10 https://github.com/phusion/passenger 10 https://github.com/jquery/jquery 10 https://github.com/spring-projects/spring-security 10 https://github.com/apache/zeppelin 10 https://github.com/zenml-io/zenml 10