Browse Security Advisories
Security Advisories
Moderate
26 days ago
Apache Flink CDC is vulnerable to SQL Injection through maliciously crafted identifiers
maven
org.apache.flink:flink-connector-mysql-cdc, org.apache.flink:flink-connector-sqlserver-cdc, org.apache.flink:flink-connector-db2-cdc, org.apache.flink:flink-connector-oracle-cdc, org.apache.flink:flink-cdc-pipeline-connectors
High
26 days ago
n8n: Execute Command Node Allows Authenticated Users to Run Arbitrary Commands on Host
npm
n8n, n8n-nodes-base
Critical
26 days ago
Flowise is vulnerable to arbitrary file write through its WriteFileTool
npm
flowise-components, flowise
High
26 days ago
pyLoad CNL and captcha handlers allow Code Injection via unsanitized parameters
pypi
pyload-ng
Moderate
26 days ago
Keycloak Potential Variable Reference in Model Storage Services
maven
org.keycloak:keycloak-model-storage-services
Moderate
26 days ago
Opencast's Paella Player 7 is vulnerable to Cross-Site Scripting
maven
org.opencastproject:opencast-common
High
26 days ago
Deno is Vulnerable to Command Injection on Windows During Batch File Execution
cargo
deno
Moderate
26 days ago
Synapse's invalid device keys degrade federation functionality
pypi
matrix-synapse
Moderate
27 days ago
Liferay Portal Notifications Widget has multiple XSS vulnerabilities through various text fields
maven
com.liferay:com.liferay.flags.web
Moderate
27 days ago
Liferay Portal is vulnerable to Stored XSS through Forms text type field
maven
com.liferay.portal:release.portal.bom
Moderate
27 days ago
Liferay Portal Commerce Shop is vulnerable to Stored XSS through SVG file
maven
com.liferay.commerce:com.liferay.commerce.shop.by.diagram.web
Moderate
27 days ago
VaahCMS is vulnerable to XSS through its Avatar Upload endpoint
packagist
webreinvent/vaahcms
Moderate
27 days ago
Liferay Portal is vulnerable to XXS through its Commerce Product's Name text field
maven
com.liferay.commerce:com.liferay.commerce.product.service
Critical
27 days ago
Melis Platform CMS Unauthenticated File Upload Leading to RCE
packagist
melisplatform/melis-cms-slider
Critical
27 days ago
Melis Platform CMS Unauthenticated Admin Account Creation
packagist
melisplatform/melis-core
Moderate
27 days ago
Liferay Portal has multiple Stored XSS vulnerabilities on its View Order page
maven
com.liferay.portal:release.portal.bom
Moderate
27 days ago
Liferay Portal is vulnerable to XSS through its Commerce Search Result widget
maven
com.liferay.portal:release.portal.bom
High
27 days ago
vLLM is vulnerable to Server-Side Request Forgery (SSRF) through `MediaConnector` class
pypi
vllm
High
27 days ago
LLaMA Factory's Chat API Contains Critical SSRF and LFI Vulnerabilities
pypi
llamafactory
Moderate
27 days ago
vLLM: Resource-Exhaustion (DoS) through Malicious Jinja Template in OpenAI-Compatible Server
pypi
vllm
Critical
27 days ago
Akka.Remote TLS did not properly implement certificate-based authentication
nuget
Akka.Cluster, Akka.Remote
High
28 days ago
Rack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
rubygems
rack
High
28 days ago
Rack: Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
rubygems
rack
High
28 days ago
Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
rubygems
rack
Moderate
28 days ago
Nodemailer: Email to an unintended domain can occur due to Interpretation Conflict
npm
nodemailer
Moderate
28 days ago
python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
pypi
python-socketio
High
28 days ago
pdfmake is vulnerable to Throttling via repeatedly redirecting URL in file embedding
npm
pdfmake
Moderate
28 days ago
Liferay Profile Widget does not prevent vCard extension spoofing
maven
com.liferay.portal:release.portal.bom
High
28 days ago
Litestar X-Forwarded-For Header Spoofing Vulnerability Enables Rate Limit Evasion
pypi
litestar
Critical
28 days ago
XWiki Platform is vulnerable to HQL injection via wiki and space search REST API
maven
org.xwiki.platform:xwiki-platform-rest-server
High
28 days ago
LangChain Text Splitters is vulnerable to XML External Entity (XXE) attacks due to unsafe XSLT parsing
pypi
langchain-text-splitters
Critical
28 days ago
XWiki OIDC Authenticator: Users with "view" access can create tokens for any users they can view
maven
org.xwiki.contrib.oidc:oidc-authenticator
Critical
29 days ago
Flowise vulnerable to RCE via Dynamic function constructor injection
npm
flowise
Low
29 days ago
NovoSGA: Manipulation of User Creation Page can lead to weak password requirements
packagist
novosga/novosga
Moderate
30 days ago
clearml is vulnerable to Path Traversal through its `safe_extract` function
pypi
clearml
Moderate
30 days ago
ZenML is vulnerable to Path Traversal through its `PathMaterializer` class
pypi
zenml
Moderate
30 days ago
MCPHub has an Improper Authorization vulnerability via its handleSseConnection function
npm
@samanhappy/mcphub
Moderate
about 1 month ago
Liferay Portal exposes sensitive user data through its Freemarker template
maven
com.liferay:com.liferay.portal.template.freemarker
Critical
about 1 month ago
Flowise is vulnerable to stored XSS via "View Messages" allows credential theft in FlowiseAI admin panel
npm
flowise
High
about 1 month ago
phpMyFAQ duplicate email registration allows multiple accounts with the same email
packagist
thorsten/phpmyfaq
Low
about 1 month ago
Claude Code permission deny bypass through symlink
npm
@anthropic-ai/claude-code
High
about 1 month ago
Claude Code can execute commands prior to the startup trust dialog
npm
@anthropic-ai/claude-code
High
about 1 month ago
Canonical LXD CSRF Vulnerability When Using Client Certificate Authentication with the LXD-UI
go
github.com/canonical/lxd
High
about 1 month ago
Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns
go
github.com/lxc/lxd
Moderate
about 1 month ago
Canonical LXD Source Container Identification Vulnerability via cmdline Spoofing in devLXD Server
go
github.com/canonical/lxd
High
about 1 month ago
Canonical LXD Vulnerable to Privilege Escalation via WebSocket Connection Hijacking in Operations API
go
github.com/canonical/lxd
Moderate
about 1 month ago
Canonical LXD Project Existence Determination Through Error Handling in Image Export Function
go
github.com/canonical/lxd
High
about 1 month ago
Canonical LXD Path Traversal Vulnerability in Instance Log File Retrieval Function
go
github.com/canonical/lxd
Moderate
about 1 month ago
Canonical LXD Project Existence Determination Through Error Handling in Image Get Function
go
github.com/canonical/lxd
Low
about 1 month ago
DataChain Vulnerable to Deserialization of Untrusted Data from Environment Variables
pypi
datachain
High
about 1 month ago
Apache Kylin Files or Directories Accessible to External Parties
maven
org.apache.kylin:kylin-server, org.apache.kylin:kylin-ops-server, org.apache.kylin:kylin-core-metadata, org.apache.kylin:kylin-core-common, org.apache.kylin:kylin-common-service, org.apache.kylin:kylin-common-server, org.apache.kylin:kylin
High
about 1 month ago
Apache Kylin Authentication Bypass Vulnerability
maven
org.apache.kylin:kylin-core-common, org.apache.kylin:kylin
High
about 1 month ago
Apache Kylin Server-Side Request Forgery (SSRF) Vulnerability
maven
org.apache.kylin:kylin-server, org.apache.kylin:kylin-ops-server, org.apache.kylin:kylin-core-metadata, org.apache.kylin:kylin-core-common, org.apache.kylin:kylin-common-service, org.apache.kylin:kylin-common-server, org.apache.kylin:kylin
High
about 1 month ago
Dolibarr vulnerable to RCE via the computed field parameter
packagist
dolibarr/dolibarr
Low
about 1 month ago
Auth0 Symfony SDK Does Not Properly Handle File Types in Bulk User Import
packagist
auth0/symfony
Low
about 1 month ago
Auth0 Wordpress plugin Does Not Properly Handle File Types in Bulk User Import
packagist
auth0/wordpress
Low
about 1 month ago
laravel-auth0 SDK Does Not Properly Handle File Types in Bulk User Import
packagist
auth0/login
Low
about 1 month ago
auth0-PHP SDK Does Not Properly Handle File Types in Bulk User Import
packagist
auth0/auth0-php
Critical
about 1 month ago
risc0 vulnerable to arbitrary code execution in guest via memory safety failure in `sys_read`
cargo
risc0-zkvm, risc0-aggregation, risc0-zkos-v1compat, risc0-zkvm-platform
High
about 1 month ago
@plone/volto vulnerable to potential DoS by invoking specific URL by anonymous user
npm
@plone/volto
Moderate
about 1 month ago
SPDK is vulnerable to buffer overflow in the NVMe-oF target component
pypi
spdk
Critical
about 1 month ago
Apache Pyfory python is vulnerable to deserialization of untrusted data
pypi
pyfury, pyfory
Moderate
about 1 month ago
QOS.CH logback-core is vulnerable to Arbitrary Code Execution through file processing
maven
ch.qos.logback:logback-core
Moderate
about 1 month ago
Liferay Portal Vulnerable to XSS in Web Content translation
maven
com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal Vulnerable to IDOR via audit events
maven
com.liferay:com.liferay.portal.security.audit.storage.service, com.liferay:com.liferay.portal.security.audit.web
High
about 1 month ago
github.com/MANTRA-Chain/mantrachain/x/tokenfactory tx gas limit is not enforced in send hooks
go
github.com/MANTRA-Chain/mantrachain, github.com/MANTRA-Chain/mantrachain/v2, github.com/MANTRA-Chain/mantrachain/v3, github.com/MANTRA-Chain/mantrachain/v4
High
about 1 month ago
Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook
go
github.com/argoproj/argo-cd/v3, github.com/argoproj/argo-cd/v2
Moderate
about 1 month ago
validator.js has a URL validation bypass vulnerability in its isURL function
npm
validator
Moderate
about 1 month ago
Joomla! CMS vulnerable to XSS via the input filter
packagist
joomla/filter
High
about 1 month ago
Finance.js vulnerable to DoS via the IRR function’s depth parameter
npm
financejs
Moderate
about 1 month ago
FormCMS has an improper access control vulnerability in the /api/schemas/history/[schemaId] endpoint
nuget
FormCMS
High
about 1 month ago
argo-cd vulnerable unauthenticated DoS via malformed Gogs webhook payload
go
github.com/argoproj/argo-cd/v3, github.com/argoproj/argo-cd/v2, github.com/argoproj/argo-cd
High
about 1 month ago
Unauthenticated argocd-server panic via a malicious Bitbucket-Server webhook payload
go
github.com/argoproj/argo-cd/v3, github.com/argoproj/argo-cd/v2, github.com/argoproj/argo-cd
Moderate
about 1 month ago
Repository Credentials Race Condition Crashes Argo CD Server
go
github.com/argoproj/argo-cd/v3, github.com/argoproj/argo-cd/v2
High
about 1 month ago
figma-developer-mcp vulnerable to command injection in get_figma_data tool
npm
figma-developer-mcp
High
about 1 month ago
@nubosoftware/node-static failure to catch exception can result in server crash
npm
@nubosoftware/node-static
Moderate
about 1 month ago
Liferay Portal vulnerable to cross-site scripting in the web content template
maven
com.liferay:com.liferay.journal.web, com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal vulnerable to cross-site scripting in the related asset selector
maven
com.liferay:com.liferay.item.selector.web
Moderate
about 1 month ago
Liferay Portal vulnerable to cross-site scripting in the Calendar widget
maven
com.liferay:com.liferay.calendar.web, com.liferay.portal:release.portal.bom
Filter by Severity
Filter by Ecosystem
maven
6,875
packagist
5,385
pypi
4,893
npm
4,362
go
2,941
nuget
1,534
cargo
1,108
rubygems
898
hex
40
actions
39
swift
37
pub
9
Filter by Package
tensorflow
430
moodle/moodle
425
tensorflow-cpu
410
tensorflow-gpu
397
magento/community-edition
318
Microsoft.ChakraCore
247
org.jenkins-ci.main:jenkins-core
242
typo3/cms
185
com.liferay.portal:release.portal.bom
151
org.apache.tomcat:tomcat
139
github.com/mattermost/mattermost/server/v8
136
com.liferay.portal:release.dxp.bom
124
pimcore/pimcore
120
dolibarr/dolibarr
117
phpmyadmin/phpmyadmin
107
microweber/microweber
103
typo3/cms-core
103
Django
102
drupal/core
98
silverstripe/framework
91
apache-airflow
89
magento/project-community-edition
87
librenms/librenms
86
drupal/drupal
79
thorsten/phpmyfaq
74
Plone
71
com.fasterxml.jackson.core:jackson-databind
69
github.com/mattermost/mattermost-server
68
github.com/usememos/memos
68
concrete5/concrete5
67
salt
65
ansible
64
shopware/platform
62
apache-superset
61
actionpack
58
symfony/symfony
57
github.com/grafana/grafana
56
org.apache.struts:struts2-core
54
mlflow
53
craftcms/cms
53
shopware/core
51
github.com/hashicorp/vault
51
github.com/rancher/rancher
50
org.keycloak:keycloak-core
50
nova
48
baserproject/basercms
47
mautic/core
47
nokogiri
45
mantisbt/mantisbt
45
org.keycloak:keycloak-services
45
gradio
44
vyper
44
matrix-synapse
43
org.elasticsearch:elasticsearch
43
org.xwiki.platform:xwiki-platform-oldcore
43
rdiffweb
42
nilsteampassnet/teampass
42
showdoc/showdoc
41
k8s.io/kubernetes
41
org.apache.tomcat.embed:tomcat-embed-core
40
froxlor/froxlor
40
intelliants/subrion
40
picklescan
39
directus
39
net.mingsoft:ms-mcms
38
snipe/snipe-it
38
github.com/mattermost/mattermost-server/v6
37
com.thoughtworks.xstream:xstream
37
com.jfinal:jfinal
36
github.com/argoproj/argo-cd/v2
36
io.undertow:undertow-core
35
moin
35
rack
35
github.com/answerdev/answer
34
parse-server
33
zendframework/zendframework1
33
org.jenkins-ci.plugins:script-security
33
django
33
gogs.io/gogs
32
opencv-python
31
shopware/shopware
31
github.com/hashicorp/nomad
31
github.com/cilium/cilium
31
keystone
31
flowise
31
github.com/hashicorp/consul
31
github.com/argoproj/argo-cd
30
getgrav/grav
30
opencv-contrib-python
30
next
29
github.com/docker/docker
29
pillow
28
electron
28
mediawiki/core
28
DotNetNuke.Core
28
org.apache.solr:solr-core
28
Pillow
28
plone
28
vllm
28
centreon/centreon
27
org.opencms:opencms-core
27
prestashop/prestashop
27
org.springframework.security:spring-security-core
27
contao/core-bundle
27
github.com/traefik/traefik/v2
25
pocketmine/pocketmine-mp
25
org.eclipse.jetty:jetty-server
25
rubygems-update
25
openssl-src
25
open-webui
25
surrealdb
24
org.keycloak:keycloak-parent
24
getkirby/cms
24
magento/core
24
pyload-ng
24
org.apache.tomcat:tomcat-catalina
24
remdex/livehelperchat
23
puppet
23
simplesamlphp/simplesamlphp
23
grumpydictator/firefly-iii
23
deno
22
activerecord
22
contao/contao
22
laravel/framework
22
tribalsystems/zenario
22
ckb
22
org.apache.openmeetings:openmeetings-parent
22
wasmtime
21
org.apache.nifi:nifi
21
@openzeppelin/contracts
21
glance
21
@openzeppelin/contracts-upgradeable
21
github.com/goharbor/harbor
21
github.com/ethereum/go-ethereum
21
Microsoft.AspNetCore.App.Runtime.win-x64
21
typo3/cms-backend
20
org.bouncycastle:bcprov-jdk15on
20
Microsoft.AspNetCore.App.Runtime.win-x86
20
ethyca-fides
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
funadmin/funadmin
20
aim
20
cockpit-hq/cockpit
20
code.gitea.io/gitea
20
zendframework/zendframework
20
org.xwiki.platform:xwiki-platform-web-templates
20
Microsoft.AspNetCore.App.Runtime.win-arm
19
neutron
19
helm.sh/helm/v3
19
github.com/zitadel/zitadel
19
topthink/framework
19
transformers
19
phpoffice/phpspreadsheet
19
mercurial
18
openmage/magento-lts
18
langchain
18
Microsoft.AspNetCore.App.Runtime.linux-x64
18
org.apache.jspwiki:jspwiki-main
18
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
18
org.springframework:spring-core
18
golang.org/x/net
18
Microsoft.AspNetCore.App.Runtime.linux-arm64
18
genix/cms
18
Microsoft.AspNetCore.App.Runtime.win-arm64
18
forkcms/forkcms
18
com.vaadin:vaadin-bom
18
com.liferay.portal:com.liferay.portal.impl
18
cobbler
18
mindsdb
18
Microsoft.AspNetCore.App.Runtime.osx-x64
18
OctoPrint
17
github.com/traefik/traefik/v3
17
notebook
17
francoisjacquet/rosariosis
17
calibreweb
17
org.apache.inlong:manager-pojo
17
Microsoft.AspNetCore.App.Runtime.linux-arm
17
org.apache.geode:geode-core
17
github.com/openfga/openfga
17
cryptography
17
ezsystems/ezpublish-kernel
17
opencart/opencart
17
cakephp/cakephp
17
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
17
yetiforce/yetiforce-crm
17
rusqlite
16
tinymce
16
lollms
16
symfony/security
16
org.apache.dubbo:dubbo
16
phpbb/phpbb
16
org.apache.tomcat:tomcat-coyote
16
org.apache.ranger:ranger
16
PaddlePaddle
16
org.apache.activemq:activemq-client
16
paddlepaddle
16
vite
16
ghost
16
sequelize
16
github.com/containerd/containerd
15
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/moodle/moodle
250
https://github.com/xwiki/xwiki-platform
222
https://github.com/chakra-core/ChakraCore
214
https://github.com/jenkinsci/jenkins
178
https://github.com/liferay/liferay-portal
169
https://github.com/django/django
119
https://github.com/apache/tomcat
118
https://github.com/pimcore/pimcore
116
https://github.com/apache/airflow
105
https://github.com/TYPO3/typo3
94
https://github.com/microweber/microweber
90
https://github.com/keycloak/keycloak
90
https://github.com/librenms/librenms
77
https://github.com/rails/rails
70
https://github.com/FasterXML/jackson-databind
70
https://github.com/thorsten/phpmyfaq
69
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/usememos/memos
68
https://github.com/kubernetes/kubernetes
66
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/ansible/ansible
59
https://github.com/mattermost/mattermost
59
https://github.com/python-pillow/Pillow
52
https://github.com/spring-projects/spring-framework
51
https://github.com/argoproj/argo-cd
50
https://github.com/grafana/grafana
47
https://github.com/apache/struts
47
https://github.com/rancher/rancher
46
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/vyperlang/vyper
44
https://github.com/concretecms/concretecms
44
https://github.com/shopware/platform
43
https://github.com/mantisbt/mantisbt
42
https://github.com/ikus060/rdiffweb
42
https://github.com/saltstack/salt
42
https://github.com/craftcms/cms
41
https://github.com/directus/directus
41
https://github.com/shopware/shopware
40
https://github.com/gradio-app/gradio
39
https://github.com/mmaitre314/picklescan
39
https://github.com/star7th/showdoc
39
https://github.com/openstack/nova
38
https://github.com/magento/magento2
38
https://github.com/dotnet/runtime
38
https://github.com/x-stream/xstream
37
https://github.com/plone/Products.CMFPlone
37
https://github.com/octobercms/october
36
https://github.com/sparklemotion/nokogiri
35
https://github.com/umbraco/Umbraco-CMS
35
https://github.com/mlflow/mlflow
35
https://github.com/answerdev/answer
34
https://github.com/apache/activemq
34
https://github.com/parse-community/parse-server
33
https://github.com/go-gitea/gitea
32
https://github.com/matrix-org/synapse
32
https://github.com/opencv/opencv
32
https://github.com/cilium/cilium
31
https://github.com/apache/inlong
31
https://github.com/PaddlePaddle/Paddle
31
https://github.com/snipe/snipe-it
30
https://github.com/contao/contao
30
https://github.com/rack/rack
29
https://github.com/strapi/strapi
29
https://github.com/FlowiseAI/Flowise
28
https://github.com/gogs/gogs
28
https://github.com/openstack/keystone
28
https://github.com/electron/electron
28
https://github.com/CVEProject/cvelist
28
https://github.com/netty/netty
27
https://github.com/baserproject/basercms
26
https://github.com/froxlor/froxlor
26
https://github.com/github/advisory-database
26
https://github.com/geoserver/geoserver
26
https://github.com/apache/nifi
26
https://github.com/bcgit/bc-java
25
https://github.com/zitadel/zitadel
25
https://github.com/vercel/next.js
25
https://github.com/langchain-ai/langchain
25
https://github.com/surrealdb/surrealdb
25
https://github.com/vllm-project/vllm
25
https://github.com/traefik/traefik
25
https://github.com/denoland/deno
25
https://github.com/pmmp/PocketMine-MP
25
https://github.com/apache/cxf
24
https://github.com/pyload/pyload
24
https://github.com/getgrav/grav
24
https://github.com/hashicorp/consul
24
https://github.com/run-llama/llama_index
24
https://github.com/PrestaShop/PrestaShop
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/eclipse/jetty.project
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/bytecodealliance/wasmtime
23
https://github.com/moby/moby
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/dnnsoftware/Dnn.Platform
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/nervosnetwork/ckb
22
https://github.com/jenkinsci/script-security-plugin
22
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/helm/helm
22
https://github.com/getkirby/kirby
22
https://github.com/laravel/framework
21
https://github.com/undertow-io/undertow
21
https://github.com/hashicorp/vault
21
https://github.com/goharbor/harbor
21
https://github.com/OpenZeppelin/openzeppelin-contracts
21
https://github.com/OpenNMS/opennms
20
https://github.com/jeecgboot/jeecg-boot
20
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/ethyca/fides
20
https://github.com/opencast/opencast
20
https://github.com/funadmin/funadmin
20
https://github.com/cloudfoundry/uaa
19
https://github.com/TYPO3-CMS/core
19
https://github.com/alkacon/opencms-core
19
https://github.com/backstage/backstage
19
https://github.com/huggingface/transformers
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/intelliants/subrion
19
https://github.com/apache/camel
18
https://github.com/OpenMage/magento-lts
18
https://github.com/vaadin/platform
18
https://github.com/rubygems/rubygems
18
https://github.com/apache/kylin
17
https://github.com/ethereum/go-ethereum
17
https://github.com/openfga/openfga
17
https://github.com/liufee/cms
17
https://github.com/containerd/containerd
17
https://github.com/vantage6/vantage6
17
https://github.com/mindsdb/mindsdb
17
https://github.com/sequelize/sequelize
16
https://github.com/etcd-io/etcd
16
https://github.com/rusqlite/rusqlite
16
https://github.com/forkcms/forkcms
16
https://github.com/vitejs/vite
16
https://github.com/pyca/cryptography
16
https://github.com/tinymce/tinymce
16
https://github.com/quarkusio/quarkus
16
https://github.com/dotnet/aspnetcore
16
https://github.com/hashicorp/nomad
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/thorsten/phpMyFAQ
15
https://github.com/cobbler/cobbler
15
https://github.com/xuxueli/xxl-job
15
https://github.com/aio-libs/aiohttp
15
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/centreon/centreon
15
https://github.com/drupal/core
15
https://github.com/zendframework/zendframework
15
https://github.com/puppetlabs/puppet
15
https://github.com/dompdf/dompdf
15
https://github.com/decidim/decidim
15
https://github.com/containers/podman
15
https://github.com/spring-projects/spring-security
15
https://github.com/OPCFoundation/UA-.NETStandard
15
https://github.com/ckeditor/ckeditor4
15
https://github.com/nodejs/undici
15
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/janeczku/calibre-web
14
https://github.com/golang/go
14
https://github.com/apache/zeppelin
14
https://github.com/ming-soft/MCMS
14
https://github.com/twisted/twisted
14
https://github.com/urllib3/urllib3
14
https://github.com/apache/superset
14
https://github.com/publify/publify
14
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/cosmos/cosmos-sdk
14
https://github.com/TryGhost/Ghost
14
https://github.com/ImageMagick/ImageMagick
14
https://github.com/Graylog2/graylog2-server
14
https://github.com/modoboa/modoboa
13
https://github.com/apache/dolphinscheduler
13
https://github.com/openbao/openbao
13
https://github.com/dromara/hutool
13
https://github.com/zenml-io/zenml
13
https://github.com/1Panel-dev/1Panel
13
https://github.com/OpenRefine/OpenRefine
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/h2oai/h2o-3
13
https://github.com/opencontainers/runc
13
https://github.com/laurent22/joplin
13
https://github.com/wagtail/wagtail
12
https://github.com/openstack/glance
12
https://github.com/smarty-php/smarty
12
https://github.com/nautobot/nautobot
12
https://github.com/YesWiki/yeswiki
12
https://github.com/OctoPrint/OctoPrint
12
https://github.com/igniterealtime/Openfire
12
https://github.com/n8n-io/n8n
12
https://github.com/DSpace/DSpace
12