Browse Security Advisories
Security Advisories for https://github.com/liferay/liferay-portal Clear Filters
Moderate
about 22 hours ago
Liferay Mentions Web is Vulnerable to Cross-site Scripting
maven
com.liferay:com.liferay.mentions.web
Moderate
about 22 hours ago
Liferay Account Admin Web vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay:com.liferay.change.tracking.web
Moderate
about 22 hours ago
Liferay Commerce Order Content Web is Vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay.commerce:com.liferay.commerce.order.content.web
Moderate
about 22 hours ago
Liferay is Vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
1 day ago
Liferay Publications is vulnerable to Incorrect Authorization
maven
com.liferay:com.liferay.change.tracking.web
Moderate
1 day ago
Liferay Publications vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay:com.liferay.change.tracking.web
Moderate
4 days ago
Liferay Portal is vulnerable to CSRF through publication comments
maven
com.liferay:com.liferay.change.tracking.web
Moderate
4 days ago
Liferay Portal's Membership page is vulnerable to XSS through “name“ text field
maven
com.liferay:com.liferay.account.admin.web
Moderate
4 days ago
Liferay Portal is vulnerable to XSS through its workflow process builder
maven
com.liferay:com.liferay.portal.workflow.kaleo.designer.web
Moderate
4 days ago
Liferay Portal Commerce is vulnerable to XSS through account "name" field
maven
com.liferay.commerce:com.liferay.commerce.order.web
Moderate
5 days ago
Liferay Portal is vulnerable to XSS through its Calendar Events parameters
maven
com.liferay:com.liferay.calendar.web
Moderate
6 days ago
Liferay Portal Notifications Widget has multiple XSS vulnerabilities through various text fields
maven
com.liferay:com.liferay.flags.web
Moderate
6 days ago
Liferay Portal Commerce Shop is vulnerable to Stored XSS through SVG file
maven
com.liferay.commerce:com.liferay.commerce.shop.by.diagram.web
Moderate
6 days ago
Liferay Portal is vulnerable to XXS through its Commerce Product's Name text field
maven
com.liferay.commerce:com.liferay.commerce.product.service
Moderate
11 days ago
Liferay Portal exposes sensitive user data through its Freemarker template
maven
com.liferay:com.liferay.portal.template.freemarker
Moderate
14 days ago
Liferay Portal Vulnerable to IDOR via audit events
maven
com.liferay:com.liferay.portal.security.audit.storage.service, com.liferay:com.liferay.portal.security.audit.web
Moderate
15 days ago
Liferay Portal vulnerable to cross-site scripting in the web content template
maven
com.liferay:com.liferay.journal.web, com.liferay.portal:release.portal.bom
Moderate
15 days ago
Liferay Portal vulnerable to cross-site scripting in the Calendar widget
maven
com.liferay:com.liferay.calendar.web
Moderate
15 days ago
Liferay Portal vulnerable to reflected cross-site scripting via the `redirect` parameter
maven
com.liferay.portal:release.portal.bom
Moderate
15 days ago
Liferay Portal vulnerable to cross-site scripting in the related asset selector
maven
com.liferay:com.liferay.item.selector.web
Moderate
15 days ago
Liferay Portal vulnerable to reflected cross-site scripting on the page configuration page
maven
com.liferay:com.liferay.product.navigation.control.menu.web
Moderate
15 days ago
Liferay Portal vulnerable to path traversal and denial-of-service in the ComboServlet
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
21 days ago
Liferay Portal and DXP does not properly expire sessions
maven
com.liferay:com.liferay.saml.impl
Moderate
22 days ago
Liferay Portal and DXP allows users to add a note to a different virtual instance
maven
com.liferay.commerce:com.liferay.commerce.service
Moderate
22 days ago
Liferay Portal and DXP audit events record password reminder answers
maven
com.liferay:com.liferay.portal.security.audit.event.generators.user.management
Moderate
22 days ago
Liferay has a stored cross-site scripting (XSS) vulnerability via a a publication’s “Name” text field
maven
com.liferay:com.liferay.change.tracking.service
Low
29 days ago
Liferay DXP Missing Critical Step in Authentication
maven
com.liferay:com.liferay.multi.factor.authentication.timebased.otp.web
Moderate
about 1 month ago
Liferay Portal's System, Instance and Site Settings are vulnerable to Open Redirect
maven
com.liferay:com.liferay.site.admin.web, com.liferay:com.liferay.configuration.admin.web
High
about 1 month ago
Liferay Portal: Missing Rate Limiting in GraphQL Endpoint Enables Resource Exhaustion Attack
maven
com.liferay:com.liferay.portal.vulcan.impl, com.liferay:com.liferay.portal.vulcan.api
Moderate
about 1 month ago
Liferay Portal's selection modal is vulnerable to XSS
maven
com.liferay:com.liferay.users.admin.web
Moderate
about 1 month ago
Liferay Portal's Organization Selector exposes organization data to remote authenticated users
maven
com.liferay:com.liferay.organizations.item.selector.web
Low
about 1 month ago
Liferay Portal JSON Web Services Direct Class Invocation Enables Service Access Policy Execution
maven
com.liferay:com.liferay.comment.web
High
about 1 month ago
Liferay Portal is vulnerable to Insecure Direct Object Reference (IDOR) attack through Authentication Bypass
maven
com.liferay:com.liferay.object.service
Moderate
about 1 month ago
Liferay Portal API Allows Authenticated Users to Access Workflow Definitions by Name
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.integration.impl
Moderate
about 1 month ago
Liferay Portal is vulnerable to Reflected XSS attack through get_editor path
maven
com.liferay:com.liferay.frontend.editor.ckeditor.web
Moderate
about 1 month ago
Liferay Portal's Incorrect Authorization vulnerability can lead to guest users to obtaining sensitive data
maven
com.liferay:com.liferay.headless.builder.impl
Moderate
about 1 month ago
Liferay Portal and Liferay DXP vulnerable to Stored Cross-site Scripting
maven
com.liferay:com.liferay.portal.workflow.task.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal exposes ERC which can lead to exploit the time response attack
maven
com.liferay:com.liferay.portal.workflow.api, com.liferay:com.liferay.headless.admin.workflow.impl, com.liferay:com.liferay.portal.vulcan.impl
Moderate
about 1 month ago
Liferay Portal is vulnerable to XSS attacks via its remote app title field
maven
com.liferay:com.liferay.client.extension.web
Moderate
about 1 month ago
Liferay Portal is vulnerable to XSS attack through its search bar portlet
maven
com.liferay:com.liferay.portal.search.web
Moderate
about 1 month ago
Liferay Portal is vulnerable to XSS attack through fieldset name in Kaleo Forms Admin
maven
com.liferay:com.liferay.portal.workflow.kaleo.forms.web
Moderate
about 1 month ago
Liferay Portal exposes 500 status when attempting login with a deleted client secret
maven
com.liferay:com.liferay.portal.security.sso.openid.connect.impl
Low
about 1 month ago
Liferay Portal is vulnerable to XSS attack through its Style Book theme
maven
com.liferay:com.liferay.frontend.taglib.clay
Moderate
about 1 month ago
Liferay Portal is vulnerable to SSRF through custom object attachment fields
maven
com.liferay:com.liferay.object.service
High
about 1 month ago
Liferay Portal Vulnerable to Denial of Service in Kaleo Forms Admin
maven
com.liferay:com.liferay.portal.workflow.kaleo.forms.web
Moderate
about 2 months ago
Liferay Portal allows improper access through the expandoTableLocalService
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.impl
Moderate
about 2 months ago
Liferay Portal allows unrestricted upload of file in the style books component
maven
com.liferay:com.liferay.style.book.web
Moderate
about 2 months ago
Liferay Portal stored cross-site scripting in text field of the web content structure
maven
com.liferay:com.liferay.journal.service
Moderate
about 2 months ago
Liferay Portal ReDoS with Role Name search in KaleoDesignerPortlet
maven
com.liferay:com.liferay.portal.workflow.kaleo.designer.web
Moderate
about 2 months ago
Liferay Portal allows open redirect in /c/portal/edit_info_item parameter redirect
maven
com.liferay:com.liferay.info.impl
Moderate
about 2 months ago
Liferay Portal vulnerable to Stored XSS in Components portlet
maven
com.liferay:com.liferay.plugins.admin.web
Moderate
about 2 months ago
Liferay Portal vulnerable to Reflected XSS with the referer and forward parameter
maven
com.liferay.portal:com.liferay.portal.kernel
Moderate
about 2 months ago
Liferay Portal JSONWS API endpoint shares sensitive information
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
about 2 months ago
Liferay Portal's unauthenticated users can access loaded files via URL before submitting the object entry
maven
com.liferay:com.liferay.object.web, com.liferay:com.liferay.object.dynamic.data.mapping.form.field.type, com.liferay:com.liferay.frontend.js.web
Moderate
about 2 months ago
Liferay Portal users are able to add system admin portlets to pages
maven
com.liferay:com.liferay.layout.impl
Moderate
about 2 months ago
Liferay Portal users can upload an unlimited amount of files
maven
com.liferay:com.liferay.dynamic.data.mapping.form.field.type, com.liferay:com.liferay.dynamic.data.mapping.form.web
Moderate
about 2 months ago
Liferay Portal Reflected XSS in CKeditor 4.21.0 endpoint
npm, maven
liferay-ckeditor, com.liferay:com.liferay.frontend.js.dependencies.web, com.liferay:com.liferay.frontend.editor.ckeditor.web
Moderate
about 2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability via PortalUtil.escapeRedirect
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal User Enumeration Vulnerability via the Create Account Page
maven
com.liferay:com.liferay.login.web
Moderate
about 2 months ago
Liferay Portal's Unlimited File Upload Could Result in DoS
maven
com.liferay.portal:release.portal.bom
Low
about 2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability via Form Container
maven
com.liferay:com.liferay.layout.taglib
Moderate
about 2 months ago
Liferay Portal Username Enumeration Vulnerability
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Stored Cross-Site Scripting Vulnerability via GroupPagesPortlet_type Parameter
maven
com.liferay:com.liferay.layout.admin.web
Moderate
about 2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability via snippet Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via DDMPortlet_definition Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting in Dynamic Data Mapping
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Unauthenticated File Access via URL
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Unvalidated File Upload
maven
com.liferay:com.liferay.dynamic.data.mapping.form.web
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting through URLs
maven
com.liferay:com.liferay.layout.type.controller.display.page
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via assetTagNames Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Enumeration Discrepancy in Calendars
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via DDM Structure Field Labels
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via backURL Paramter
maven
com.liferay:com.liferay.journal.web
Moderate
about 2 months ago
Liferay Portal CSRF Vulnerability via Endpoint Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability in displayType Parameter
maven
com.liferay:com.liferay.expando.web
Moderate
about 2 months ago
Liferay Portal has Stored Cross-Site Scripting Vulnerability via Message Boards Feature
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Email Modification Vulnerability via Calendar Portlet
maven
com.liferay:com.liferay.calendar.service
Moderate
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting
maven
com.liferay.portal:release.portal.bom
Low
about 2 months ago
Liferay Portal Login Bypass Vulnerability
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal Vulnerable to Insecure Direct Object Reference
maven
com.liferay:com.liferay.roles.selector.web
Low
about 2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting
maven
com.liferay:com.liferay.layout.taglib
Moderate
2 months ago
Liferay Portal 7.4.0 and Liferay DXP have a reflected cross-site scripting (XSS) vulnerability
maven
com.liferay:com.liferay.frontend.taglib.clay, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal and Liferay DXP have a reflected cross-site scripting vulnerability
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Reflected XSS in blogs-web
maven
com.liferay:com.liferay.blogs.web
High
4 months ago
Liferay Portal SessionClicks does not restrict the saving of request parameters in the HTTP session
maven
com.liferay.portal:com.liferay.portal.kernel
High
4 months ago
Liferay Portal does not limit the depth of a GraphQL queries
maven
com.liferay:com.liferay.portal.vulcan.impl
Moderate
5 months ago
Liferay Portal Reflected XSS in marketplace-app-manager-web
maven
com.liferay:com.liferay.marketplace.app.manager.web
High
over 1 year ago
Liferay Portal and Liferay DXP Vulnerable to Cross-Site Request Forgery in Terms of Use Page
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:com.liferay.portal.impl
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Does Not Obfuscate Password Reminder Answers
maven
com.liferay.portal:release.dxp.bom, com.liferay.commerce:com.liferay.commerce.account.web, com.liferay:com.liferay.login.web, com.liferay:com.liferay.users.admin.web, com.liferay.portal:portal-impl
Moderate
over 1 year ago
Liferay Portal and Liferay DXP User Enumeration Vulnerability
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP HTTP Header Can Expose Versions
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Two Forward Slashes
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Replacement Character
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Allows Templates to be Viewed via the UI or API
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Allows Authenticated Users with View Permissions to Edit Permissions
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Does Not Properly Restrict Membership to Child Site Based on Parent Site Options
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Information Disclosure Vulnerability in the Control Panel
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Privilege escalation in Liferay Portal
maven
com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Vulnerable to Open Redirect in Countries Management's Edit Region Page
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Filter by Severity
Filter by Ecosystem
maven
6,788
packagist
5,256
pypi
4,833
npm
4,336
go
2,889
nuget
1,646
cargo
1,086
rubygems
906
actions
39
hex
39
swift
34
pub
9
Filter by Package
tensorflow
430
moodle/moodle
418
tensorflow-cpu
406
tensorflow-gpu
392
magento/community-edition
264
Microsoft.ChakraCore
247
org.jenkins-ci.main:jenkins-core
242
typo3/cms
176
com.liferay.portal:release.portal.bom
150
org.apache.tomcat:tomcat
131
github.com/mattermost/mattermost/server/v8
130
pimcore/pimcore
120
dolibarr/dolibarr
117
com.liferay.portal:release.dxp.bom
117
phpmyadmin/phpmyadmin
107
Django
106
microweber/microweber
103
typo3/cms-core
102
magento/project-community-edition
98
drupal/core
98
silverstripe/framework
90
apache-airflow
86
librenms/librenms
84
drupal/drupal
74
thorsten/phpmyfaq
74
Plone
70
com.fasterxml.jackson.core:jackson-databind
69
github.com/usememos/memos
68
concrete5/concrete5
67
salt
65
ansible
63
apache-superset
61
symfony/symfony
60
actionpack
59
shopware/platform
58
github.com/grafana/grafana
56
org.apache.struts:struts2-core
56
mlflow
53
craftcms/cms
53
org.keycloak:keycloak-core
50
github.com/hashicorp/vault
49
mautic/core
48
github.com/rancher/rancher
48
nova
48
baserproject/basercms
47
nokogiri
46
shopware/core
46
gradio
44
vyper
44
matrix-synapse
43
github.com/mattermost/mattermost-server
43
org.elasticsearch:elasticsearch
43
org.xwiki.platform:xwiki-platform-oldcore
43
nilsteampassnet/teampass
42
rdiffweb
42
k8s.io/kubernetes
42
org.keycloak:keycloak-services
42
mantisbt/mantisbt
41
showdoc/showdoc
41
froxlor/froxlor
40
intelliants/subrion
40
directus
39
picklescan
39
snipe/snipe-it
38
com.thoughtworks.xstream:xstream
37
github.com/mattermost/mattermost-server/v6
37
net.mingsoft:ms-mcms
36
org.apache.tomcat.embed:tomcat-embed-core
36
com.jfinal:jfinal
36
io.undertow:undertow-core
35
github.com/argoproj/argo-cd/v2
35
rack
35
moin
35
github.com/answerdev/answer
34
org.jenkins-ci.plugins:script-security
33
parse-server
33
gogs.io/gogs
32
github.com/argoproj/argo-cd
32
keystone
32
zendframework/zendframework1
32
github.com/hashicorp/nomad
31
opencv-python
31
github.com/cilium/cilium
31
shopware/shopware
31
getgrav/grav
30
flowise
30
opencv-contrib-python
30
django
29
contao/core-bundle
29
github.com/hashicorp/consul
29
next
29
github.com/docker/docker
29
pillow
28
electron
28
vllm
28
mediawiki/core
28
Pillow
28
org.springframework.security:spring-security-core
27
prestashop/prestashop
27
DotNetNuke.Core
27
centreon/centreon
27
org.opencms:opencms-core
27
org.apache.solr:solr-core
27
plone
27
org.eclipse.jetty:jetty-server
25
open-webui
25
github.com/traefik/traefik/v2
25
rubygems-update
25
openssl-src
25
pocketmine/pocketmine-mp
25
pyload-ng
24
surrealdb
24
org.keycloak:keycloak-parent
24
getkirby/cms
24
simplesamlphp/simplesamlphp
23
remdex/livehelperchat
23
grumpydictator/firefly-iii
23
puppet
23
laravel/framework
23
zendframework/zendframework
22
deno
22
activerecord
22
org.apache.tomcat:tomcat-catalina
22
tribalsystems/zenario
22
ckb
22
org.apache.openmeetings:openmeetings-parent
22
org.bouncycastle:bcprov-jdk15on
21
org.apache.nifi:nifi
21
@openzeppelin/contracts-upgradeable
21
github.com/ethereum/go-ethereum
21
glance
21
github.com/goharbor/harbor
21
@openzeppelin/contracts
21
code.gitea.io/gitea
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
aim
20
cockpit-hq/cockpit
20
ethyca-fides
20
org.xwiki.platform:xwiki-platform-web-templates
20
funadmin/funadmin
20
typo3/cms-backend
20
wasmtime
20
helm.sh/helm/v3
19
phpoffice/phpspreadsheet
19
neutron
19
topthink/framework
19
transformers
19
Microsoft.AspNetCore.App.Runtime.win-x86
18
org.apache.tomcat:tomcat-coyote
18
github.com/zitadel/zitadel
18
contao/contao
18
mercurial
18
golang.org/x/net
18
forkcms/forkcms
18
com.vaadin:vaadin-bom
18
org.apache.jspwiki:jspwiki-main
18
cobbler
18
mindsdb
18
org.springframework:spring-core
18
genix/cms
18
Microsoft.AspNetCore.App.Runtime.win-x64
18
langchain
18
org.apache.inlong:manager-pojo
17
github.com/traefik/traefik/v3
17
francoisjacquet/rosariosis
17
cryptography
17
cakephp/cakephp
17
OctoPrint
17
yetiforce/yetiforce-crm
17
openmage/magento-lts
17
ezsystems/ezpublish-kernel
17
org.apache.geode:geode-core
17
notebook
17
calibreweb
17
opencart/opencart
17
github.com/openfga/openfga
17
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
16
PaddlePaddle
16
Microsoft.AspNetCore.App.Runtime.linux-x64
16
sequelize
16
ghost
16
Microsoft.AspNetCore.App.Runtime.win-arm
16
org.apache.ranger:ranger
16
Microsoft.AspNetCore.App.Runtime.linux-arm64
16
org.apache.activemq:activemq-client
16
lollms
16
Microsoft.AspNetCore.App.Runtime.linux-arm
16
october/system
16
rusqlite
16
paddlepaddle
16
phpbb/phpbb
16
tinymce
16
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
16
Microsoft.AspNetCore.App.Runtime.osx-x64
16
org.apache.dubbo:dubbo
16
ec-cube/ec-cube
15
smarty/smarty
15
ckeditor4
15
vite
15
undici
15
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/moodle/moodle
243
https://github.com/xwiki/xwiki-platform
222
https://github.com/chakra-core/ChakraCore
214
https://github.com/jenkinsci/jenkins
178
https://github.com/liferay/liferay-portal
154
https://github.com/django/django
119
https://github.com/pimcore/pimcore
116
https://github.com/apache/tomcat
114
https://github.com/apache/airflow
104
https://github.com/TYPO3/typo3
94
https://github.com/microweber/microweber
90
https://github.com/keycloak/keycloak
86
https://github.com/librenms/librenms
75
https://github.com/FasterXML/jackson-databind
70
https://github.com/rails/rails
70
https://github.com/thorsten/phpmyfaq
69
https://github.com/usememos/memos
68
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/kubernetes/kubernetes
66
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/ansible/ansible
59
https://github.com/python-pillow/Pillow
52
https://github.com/spring-projects/spring-framework
51
https://github.com/argoproj/argo-cd
50
https://github.com/grafana/grafana
47
https://github.com/apache/struts
47
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/vyperlang/vyper
44
https://github.com/rancher/rancher
44
https://github.com/concretecms/concretecms
44
https://github.com/shopware/platform
43
https://github.com/ikus060/rdiffweb
42
https://github.com/saltstack/salt
42
https://github.com/directus/directus
41
https://github.com/craftcms/cms
41
https://github.com/mattermost/mattermost
39
https://github.com/star7th/showdoc
39
https://github.com/mmaitre314/picklescan
39
https://github.com/openstack/nova
38
https://github.com/magento/magento2
38
https://github.com/gradio-app/gradio
38
https://github.com/mantisbt/mantisbt
38
https://github.com/x-stream/xstream
37
https://github.com/plone/Products.CMFPlone
37
https://github.com/dotnet/runtime
37
https://github.com/octobercms/october
36
https://github.com/shopware/shopware
35
https://github.com/sparklemotion/nokogiri
35
https://github.com/umbraco/Umbraco-CMS
35
https://github.com/mlflow/mlflow
35
https://github.com/apache/activemq
34
https://github.com/answerdev/answer
34
https://github.com/parse-community/parse-server
33
https://github.com/go-gitea/gitea
32
https://github.com/matrix-org/synapse
32
https://github.com/opencv/opencv
32
https://github.com/apache/inlong
31
https://github.com/PaddlePaddle/Paddle
31
https://github.com/cilium/cilium
31
https://github.com/contao/contao
30
https://github.com/snipe/snipe-it
30
https://github.com/rack/rack
29
https://github.com/electron/electron
28
https://github.com/CVEProject/cvelist
28
https://github.com/gogs/gogs
28
https://github.com/openstack/keystone
28
https://github.com/FlowiseAI/Flowise
27
https://github.com/netty/netty
26
https://github.com/github/advisory-database
26
https://github.com/baserproject/basercms
26
https://github.com/geoserver/geoserver
26
https://github.com/apache/nifi
26
https://github.com/froxlor/froxlor
26
https://github.com/pmmp/PocketMine-MP
25
https://github.com/vercel/next.js
25
https://github.com/strapi/strapi
25
https://github.com/vllm-project/vllm
25
https://github.com/traefik/traefik
25
https://github.com/denoland/deno
25
https://github.com/surrealdb/surrealdb
25
https://github.com/langchain-ai/langchain
25
https://github.com/bcgit/bc-java
24
https://github.com/run-llama/llama_index
24
https://github.com/apache/cxf
24
https://github.com/getgrav/grav
24
https://github.com/pyload/pyload
24
https://github.com/moby/moby
23
https://github.com/PrestaShop/PrestaShop
23
https://github.com/eclipse/jetty.project
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/helm/helm
22
https://github.com/hashicorp/consul
22
https://github.com/jenkinsci/script-security-plugin
22
https://github.com/zitadel/zitadel
22
https://github.com/nervosnetwork/ckb
22
https://github.com/getkirby/kirby
22
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/bytecodealliance/wasmtime
22
https://github.com/undertow-io/undertow
21
https://github.com/goharbor/harbor
21
https://github.com/laravel/framework
21
https://github.com/OpenZeppelin/openzeppelin-contracts
21
https://github.com/jeecgboot/jeecg-boot
20
https://github.com/ethyca/fides
20
https://github.com/OpenNMS/opennms
20
https://github.com/funadmin/funadmin
20
https://github.com/opencast/opencast
20
https://github.com/dnnsoftware/Dnn.Platform
20
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/huggingface/transformers
19
https://github.com/alkacon/opencms-core
19
https://github.com/hashicorp/vault
19
https://github.com/cloudfoundry/uaa
19
https://github.com/intelliants/subrion
19
https://github.com/backstage/backstage
19
https://github.com/TYPO3-CMS/core
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/vaadin/platform
18
https://github.com/rubygems/rubygems
18
https://github.com/apache/camel
18
https://github.com/liufee/cms
17
https://github.com/OpenMage/magento-lts
17
https://github.com/containerd/containerd
17
https://github.com/apache/kylin
17
https://github.com/openfga/openfga
17
https://github.com/ethereum/go-ethereum
17
https://github.com/mindsdb/mindsdb
17
https://github.com/vantage6/vantage6
17
https://github.com/quarkusio/quarkus
16
https://github.com/tinymce/tinymce
16
https://github.com/etcd-io/etcd
16
https://github.com/hashicorp/nomad
16
https://github.com/sequelize/sequelize
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/pyca/cryptography
16
https://github.com/forkcms/forkcms
16
https://github.com/rusqlite/rusqlite
16
https://github.com/centreon/centreon
15
https://github.com/zendframework/zendframework
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/dotnet/aspnetcore
15
https://github.com/cobbler/cobbler
15
https://github.com/ckeditor/ckeditor4
15
https://github.com/containers/podman
15
https://github.com/decidim/decidim
15
https://github.com/dompdf/dompdf
15
https://github.com/thorsten/phpMyFAQ
15
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/aio-libs/aiohttp
15
https://github.com/drupal/core
15
https://github.com/puppetlabs/puppet
15
https://github.com/vitejs/vite
15
https://github.com/OPCFoundation/UA-.NETStandard
15
https://github.com/xuxueli/xxl-job
15
https://github.com/nodejs/undici
15
https://github.com/urllib3/urllib3
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/janeczku/calibre-web
14
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/Graylog2/graylog2-server
14
https://github.com/apache/superset
14
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/spring-projects/spring-security
14
https://github.com/golang/go
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/cosmos/cosmos-sdk
14
https://github.com/twisted/twisted
14
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/TryGhost/Ghost
14
https://github.com/publify/publify
14
https://github.com/apache/zeppelin
14
https://github.com/dromara/hutool
13
https://github.com/OpenRefine/OpenRefine
13
https://github.com/zenml-io/zenml
13
https://github.com/1Panel-dev/1Panel
13
https://github.com/opencontainers/runc
13
https://github.com/ming-soft/MCMS
13
https://github.com/laurent22/joplin
13
https://github.com/apache/dolphinscheduler
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/modoboa/modoboa
13
https://github.com/DSpace/DSpace
12
https://github.com/patriksimek/vm2
12
https://github.com/VulnSageAgent/PoCs
12
https://github.com/modxcms/revolution
12
https://sourceforge.net/projects/phpmyadmin.sourceforge.net
12
https://github.com/yiisoft/yii2
12
https://github.com/wagtail/wagtail
12
https://github.com/centreon/centreon-archived
12
https://github.com/puma/puma
12
https://github.com/YesWiki/yeswiki
12
https://github.com/codeigniter4/CodeIgniter4
12
https://github.com/matrix-org/matrix-js-sdk
12