Browse Security Advisories
Moderate Security Advisories for https://github.com/liferay/liferay-portal Clear Filters
Moderate
1 day ago
Liferay Portal vulnerable to password enumeration
maven
com.liferay.portal:release.portal.bom
Moderate
4 days ago
Liferay Portal Stores Password Reset Tokens in Plain Text
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
4 days ago
Liferay Portal Vulnerable to Information Exposure Through a Log File Vulnerability in LDAP Import Feature
maven
com.liferay:com.liferay.portal.security.ldap.impl
Moderate
4 days ago
Liferay Portal Vulnerable to Open Redirect via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter
maven
com.liferay:com.liferay.layout.admin.web
Moderate
4 days ago
Liferay Portal Vulnerable to Cross-Site Scripting
maven
com.liferay:com.liferay.account.admin.web
Moderate
8 days ago
Liferay Portal ComboServlet denial of service via large file combination
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
8 days ago
Liferay Portal and DXP do not properly restrict access to OpenAPI
maven
com.liferay:com.liferay.portal.security.auth.verifier
Moderate
9 days ago
Liferay Portal and Liferay DXP vulnerable to reflected cross-site scripting (XSS)
maven
com.liferay:com.liferay.dynamic.data.mapping.web
Moderate
10 days ago
Liferay Portal reflected cross-site scripting (XSS) vulnerability in the google_gaget
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
18 days ago
Liferay has Incorrect Permission Assignment for Critical Resource
maven
com.liferay:com.liferay.site.navigation.menu.item.asset.vocabulary
Moderate
18 days ago
Liferay Account Admin Web vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay:com.liferay.change.tracking.web
Moderate
18 days ago
Liferay Mentions Web is Vulnerable to Cross-site Scripting
maven
com.liferay:com.liferay.mentions.web
Moderate
18 days ago
Liferay Commerce Order Content Web is Vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay.commerce:com.liferay.commerce.order.content.web
Moderate
18 days ago
Liferay is Vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
18 days ago
Liferay Publications is vulnerable to Incorrect Authorization
maven
com.liferay:com.liferay.change.tracking.web
Moderate
18 days ago
Liferay Publications vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay:com.liferay.change.tracking.web
Moderate
21 days ago
Liferay Portal is vulnerable to CSRF through publication comments
maven
com.liferay:com.liferay.change.tracking.web
Moderate
21 days ago
Liferay Portal is vulnerable to XSS through its workflow process builder
maven
com.liferay:com.liferay.portal.workflow.kaleo.designer.web
Moderate
21 days ago
Liferay Portal Commerce is vulnerable to XSS through account "name" field
maven
com.liferay.commerce:com.liferay.commerce.order.web
Moderate
21 days ago
Liferay Portal's Membership page is vulnerable to XSS through “name“ text field
maven
com.liferay:com.liferay.account.admin.web
Moderate
22 days ago
Liferay Portal is vulnerable to XSS through its Calendar Events parameters
maven
com.liferay:com.liferay.calendar.web
Moderate
23 days ago
Liferay Portal Commerce Shop is vulnerable to Stored XSS through SVG file
maven
com.liferay.commerce:com.liferay.commerce.shop.by.diagram.web
Moderate
23 days ago
Liferay Portal Notifications Widget has multiple XSS vulnerabilities through various text fields
maven
com.liferay:com.liferay.flags.web
Moderate
23 days ago
Liferay Portal is vulnerable to XXS through its Commerce Product's Name text field
maven
com.liferay.commerce:com.liferay.commerce.product.service
Moderate
28 days ago
Liferay Portal exposes sensitive user data through its Freemarker template
maven
com.liferay:com.liferay.portal.template.freemarker
Moderate
about 1 month ago
Liferay Portal Vulnerable to IDOR via audit events
maven
com.liferay:com.liferay.portal.security.audit.storage.service, com.liferay:com.liferay.portal.security.audit.web
Moderate
about 1 month ago
Liferay Portal vulnerable to cross-site scripting in the web content template
maven
com.liferay:com.liferay.journal.web, com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal vulnerable to reflected cross-site scripting via the `redirect` parameter
maven
com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal vulnerable to cross-site scripting in the Calendar widget
maven
com.liferay:com.liferay.calendar.web
Moderate
about 1 month ago
Liferay Portal vulnerable to reflected cross-site scripting on the page configuration page
maven
com.liferay:com.liferay.product.navigation.control.menu.web
Moderate
about 1 month ago
Liferay Portal vulnerable to cross-site scripting in the related asset selector
maven
com.liferay:com.liferay.item.selector.web
Moderate
about 1 month ago
Liferay Portal vulnerable to path traversal and denial-of-service in the ComboServlet
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal and DXP does not properly expire sessions
maven
com.liferay:com.liferay.saml.impl
Moderate
about 1 month ago
Liferay Portal and DXP audit events record password reminder answers
maven
com.liferay:com.liferay.portal.security.audit.event.generators.user.management
Moderate
about 1 month ago
Liferay Portal and DXP allows users to add a note to a different virtual instance
maven
com.liferay.commerce:com.liferay.commerce.service
Moderate
about 1 month ago
Liferay has a stored cross-site scripting (XSS) vulnerability via a a publication’s “Name” text field
maven
com.liferay:com.liferay.change.tracking.service
Moderate
about 2 months ago
Liferay Portal's System, Instance and Site Settings are vulnerable to Open Redirect
maven
com.liferay:com.liferay.site.admin.web, com.liferay:com.liferay.configuration.admin.web
Moderate
about 2 months ago
Liferay Portal's selection modal is vulnerable to XSS
maven
com.liferay:com.liferay.users.admin.web
Moderate
about 2 months ago
Liferay Portal's Organization Selector exposes organization data to remote authenticated users
maven
com.liferay:com.liferay.organizations.item.selector.web
Moderate
about 2 months ago
Liferay Portal API Allows Authenticated Users to Access Workflow Definitions by Name
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.integration.impl
Moderate
about 2 months ago
Liferay Portal is vulnerable to Reflected XSS attack through get_editor path
maven
com.liferay:com.liferay.frontend.editor.ckeditor.web
Moderate
about 2 months ago
Liferay Portal's Incorrect Authorization vulnerability can lead to guest users to obtaining sensitive data
maven
com.liferay:com.liferay.headless.builder.impl
Moderate
about 2 months ago
Liferay Portal and Liferay DXP vulnerable to Stored Cross-site Scripting
maven
com.liferay:com.liferay.portal.workflow.task.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
about 2 months ago
Liferay Portal exposes ERC which can lead to exploit the time response attack
maven
com.liferay:com.liferay.portal.workflow.api, com.liferay:com.liferay.headless.admin.workflow.impl, com.liferay:com.liferay.portal.vulcan.impl
Moderate
about 2 months ago
Liferay Portal is vulnerable to XSS attack through its search bar portlet
maven
com.liferay:com.liferay.portal.search.web
Moderate
about 2 months ago
Liferay Portal is vulnerable to XSS attacks via its remote app title field
maven
com.liferay:com.liferay.client.extension.web
Moderate
about 2 months ago
Liferay Portal is vulnerable to XSS attack through fieldset name in Kaleo Forms Admin
maven
com.liferay:com.liferay.portal.workflow.kaleo.forms.web
Moderate
about 2 months ago
Liferay Portal exposes 500 status when attempting login with a deleted client secret
maven
com.liferay:com.liferay.portal.security.sso.openid.connect.impl
Moderate
about 2 months ago
Liferay Portal is vulnerable to SSRF through custom object attachment fields
maven
com.liferay:com.liferay.object.service
Moderate
2 months ago
Liferay Portal allows improper access through the expandoTableLocalService
maven
com.liferay:com.liferay.portal.workflow.kaleo.runtime.impl
Moderate
2 months ago
Liferay Portal stored cross-site scripting in text field of the web content structure
maven
com.liferay:com.liferay.journal.service
Moderate
2 months ago
Liferay Portal allows unrestricted upload of file in the style books component
maven
com.liferay:com.liferay.style.book.web
Moderate
2 months ago
Liferay Portal allows open redirect in /c/portal/edit_info_item parameter redirect
maven
com.liferay:com.liferay.info.impl
Moderate
2 months ago
Liferay Portal ReDoS with Role Name search in KaleoDesignerPortlet
maven
com.liferay:com.liferay.portal.workflow.kaleo.designer.web
Moderate
2 months ago
Liferay Portal vulnerable to Reflected XSS with the referer and forward parameter
maven
com.liferay.portal:com.liferay.portal.kernel
Moderate
2 months ago
Liferay Portal vulnerable to Stored XSS in Components portlet
maven
com.liferay:com.liferay.plugins.admin.web
Moderate
2 months ago
Liferay Portal JSONWS API endpoint shares sensitive information
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
2 months ago
Liferay Portal Reflected XSS in CKeditor 4.21.0 endpoint
npm, maven
liferay-ckeditor, com.liferay:com.liferay.frontend.js.dependencies.web, com.liferay:com.liferay.frontend.editor.ckeditor.web
Moderate
2 months ago
Liferay Portal's unauthenticated users can access loaded files via URL before submitting the object entry
maven
com.liferay:com.liferay.object.web, com.liferay:com.liferay.object.dynamic.data.mapping.form.field.type, com.liferay:com.liferay.frontend.js.web
Moderate
2 months ago
Liferay Portal users can upload an unlimited amount of files
maven
com.liferay:com.liferay.dynamic.data.mapping.form.field.type, com.liferay:com.liferay.dynamic.data.mapping.form.web
Moderate
2 months ago
Liferay Portal users are able to add system admin portlets to pages
maven
com.liferay:com.liferay.layout.impl
Moderate
2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability via PortalUtil.escapeRedirect
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal User Enumeration Vulnerability via the Create Account Page
maven
com.liferay:com.liferay.login.web
Moderate
2 months ago
Liferay Portal's Unlimited File Upload Could Result in DoS
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Username Enumeration Vulnerability
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability via snippet Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Stored Cross-Site Scripting Vulnerability via GroupPagesPortlet_type Parameter
maven
com.liferay:com.liferay.layout.admin.web
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting in Dynamic Data Mapping
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via DDMPortlet_definition Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Unvalidated File Upload
maven
com.liferay:com.liferay.dynamic.data.mapping.form.web
Moderate
2 months ago
Liferay Portal Unauthenticated File Access via URL
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting through URLs
maven
com.liferay:com.liferay.layout.type.controller.display.page
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via assetTagNames Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via DDM Structure Field Labels
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Enumeration Discrepancy in Calendars
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting via backURL Paramter
maven
com.liferay:com.liferay.journal.web
Moderate
2 months ago
Liferay Portal CSRF Vulnerability via Endpoint Parameter
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Reflected Cross-Site Scripting Vulnerability in displayType Parameter
maven
com.liferay:com.liferay.expando.web
Moderate
2 months ago
Liferay Portal Email Modification Vulnerability via Calendar Portlet
maven
com.liferay:com.liferay.calendar.service
Moderate
2 months ago
Liferay Portal has Stored Cross-Site Scripting Vulnerability via Message Boards Feature
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Vulnerable to Cross-Site Scripting
maven
com.liferay.portal:release.portal.bom
Moderate
2 months ago
Liferay Portal Vulnerable to Insecure Direct Object Reference
maven
com.liferay:com.liferay.roles.selector.web
Moderate
3 months ago
Liferay Portal 7.4.0 and Liferay DXP have a reflected cross-site scripting (XSS) vulnerability
maven
com.liferay:com.liferay.frontend.taglib.clay, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
3 months ago
Liferay Portal and Liferay DXP have a reflected cross-site scripting vulnerability
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
3 months ago
Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability
maven
com.liferay:com.liferay.account.admin.web, com.liferay:com.liferay.users.admin.web, com.liferay:com.liferay.image.uploader.web, com.liferay:com.liferay.frontend.taglib, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
3 months ago
Liferay Portal Reflected XSS in blogs-web
maven
com.liferay:com.liferay.blogs.web
Moderate
6 months ago
Liferay Portal Reflected XSS in marketplace-app-manager-web
maven
com.liferay:com.liferay.marketplace.app.manager.web
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Does Not Obfuscate Password Reminder Answers
maven
com.liferay.portal:release.dxp.bom, com.liferay.commerce:com.liferay.commerce.account.web, com.liferay:com.liferay.login.web, com.liferay:com.liferay.users.admin.web, com.liferay.portal:portal-impl
Moderate
over 1 year ago
Liferay Portal and Liferay DXP User Enumeration Vulnerability
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP HTTP Header Can Expose Versions
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Two Forward Slashes
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Replacement Character
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Allows Templates to be Viewed via the UI or API
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Allows Authenticated Users with View Permissions to Edit Permissions
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Information Disclosure Vulnerability in the Control Panel
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Does Not Properly Restrict Membership to Child Site Based on Parent Site Options
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Liferay Portal and Liferay DXP Vulnerable to Open Redirect in Countries Management's Edit Region Page
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 1 year ago
Privilege escalation in Liferay Portal
maven
com.liferay.portal:release.portal.bom
Moderate
about 2 years ago
Liferay Portal and Liferay DXP Organization Selector Does Not Check User Permissions
maven
com.liferay.portal:release.dxp.bom, com.liferay:com.liferay.organizations.item.selector.web
Moderate
almost 3 years ago
Liferay Portal and Liferay DXP Vulnerable to XSS via the Announcements Module
maven
com.liferay.portal:release.dxp.bom, com.liferay:com.liferay.announcements.web
Filter by Severity
Filter by Ecosystem
maven
3,331
packagist
3,025
pypi
2,062
npm
1,411
go
1,342
nuget
560
rubygems
416
cargo
412
hex
16
swift
11
actions
8
pub
2
Filter by Package
moodle/moodle
313
tensorflow
200
tensorflow-cpu
192
tensorflow-gpu
187
magento/community-edition
182
org.jenkins-ci.main:jenkins-core
148
typo3/cms
116
com.liferay.portal:release.portal.bom
112
org.apache.tomcat:tomcat
97
pimcore/pimcore
87
github.com/mattermost/mattermost/server/v8
86
com.liferay.portal:release.dxp.bom
82
typo3/cms-core
73
microweber/microweber
72
silverstripe/framework
67
phpmyadmin/phpmyadmin
56
dolibarr/dolibarr
55
drupal/core
53
github.com/usememos/memos
50
apache-airflow
47
thorsten/phpmyfaq
47
github.com/mattermost/mattermost-server
47
magento/project-community-edition
46
concrete5/concrete5
46
apache-superset
45
librenms/librenms
45
actionpack
42
Django
39
drupal/drupal
35
org.elasticsearch:elasticsearch
34
picklescan
34
showdoc/showdoc
34
mantisbt/mantisbt
33
org.keycloak:keycloak-core
32
craftcms/cms
31
github.com/grafana/grafana
31
plone
29
github.com/mattermost/mattermost-server/v6
29
nova
29
symfony/symfony
28
mautic/core
27
intelliants/subrion
27
moin
27
snipe/snipe-it
27
ansible
26
baserproject/basercms
26
shopware/platform
26
org.keycloak:keycloak-services
24
k8s.io/kubernetes
24
Plone
23
directus
23
nilsteampassnet/teampass
21
github.com/hashicorp/vault
21
github.com/answerdev/answer
21
mediawiki/core
20
shopware/core
20
grumpydictator/firefly-iii
20
froxlor/froxlor
20
matrix-synapse
20
gradio
20
django
20
shopware/shopware
19
org.apache.struts:struts2-core
19
github.com/cilium/cilium
19
remdex/livehelperchat
18
DotNetNuke.Core
18
getkirby/cms
17
github.com/argoproj/argo-cd/v2
17
salt
17
contao/core-bundle
17
prestashop/prestashop
16
github.com/hashicorp/consul
16
rack
16
zendframework/zendframework1
16
org.apache.tomcat.embed:tomcat-embed-core
16
github.com/docker/docker
16
rdiffweb
16
io.undertow:undertow-core
15
org.apache.jspwiki:jspwiki-main
15
org.opencms:opencms-core
15
vyper
15
github.com/hashicorp/nomad
15
yetiforce/yetiforce-crm
15
com.liferay.portal:com.liferay.portal.impl
14
glance
14
tinymce
14
org.xwiki.platform:xwiki-platform-oldcore
14
puppet
14
keystone
13
typo3/cms-backend
13
com.jfinal:jfinal
13
tribalsystems/zenario
13
org.springframework.security:spring-security-core
13
github.com/openfga/openfga
13
github.com/goharbor/harbor
13
forkcms/forkcms
13
com.thoughtworks.xstream:xstream
13
helm.sh/helm/v3
12
next
12
org.bouncycastle:bcprov-jdk15on
12
transformers
12
simplesamlphp/simplesamlphp
12
wallabag/wallabag
12
nokogiri
12
roundup
12
github.com/argoproj/argo-cd
12
github.com/containerd/containerd
11
github.com/traefik/traefik/v2
11
tinymce/tinymce
11
feehi/feehicms
11
laravel/framework
11
getgrav/grav
11
vllm
11
activesupport
11
vite
11
ckeditor4
11
genix/cms
11
lavalite/cms
11
@openzeppelin/contracts
11
github.com/rancher/rancher
11
org.eclipse.jetty:jetty-server
11
ghost
11
@openzeppelin/contracts-upgradeable
11
ec-cube/ec-cube
11
TinyMCE
11
github.com/ethereum/go-ethereum
11
francoisjacquet/rosariosis
10
joplin
10
opencart/opencart
10
bootstrap
10
github.com/greenpau/caddy-security
10
OctoPrint
10
gogs.io/gogs
10
aiohttp
10
fat_free_crm
10
bolt/bolt
10
phpoffice/phpspreadsheet
10
org.apache.jspwiki:jspwiki-war
10
electron
10
surrealdb
10
silverstripe/cms
10
zendframework/zendframework
10
notebook
10
org.springframework:spring-core
10
org.apache.solr:solr-core
10
org.apache.nifi:nifi
10
com.vaadin:vaadin-bom
10
org.keycloak:keycloak-parent
10
PaddlePaddle
10
code.gitea.io/gitea
9
pyftpdlib
9
org.opencrx:opencrx-core-models
9
org.igniterealtime.openfire:parent
9
open-webui
9
pimcore/admin-ui-classic-bundle
9
wasmtime
9
calibreweb
9
cakephp/cakephp
9
publify_core
9
org.mortbay.jetty:jetty
9
org.apache.activemq:activemq-client
9
org.jenkins-ci.plugins:git
9
org.jenkins-ci.plugins:script-security
9
horizon
9
rubygems-update
9
angular
9
urllib3
9
org.apache.ranger:ranger
8
camaleon_cms
8
ckan
8
centreon/centreon
8
org.apache.archiva:archiva
8
modoboa
8
parse-server
8
org.jenkins-ci.plugins:electricflow
8
editor.md
8
mlflow
8
phpmyfaq/phpmyfaq
8
contao/contao
8
github.com/kubeedge/kubeedge
8
sylius/sylius
8
bagisto/bagisto
8
neutron
8
validator
8
flowise
8
sulu/sulu
8
github.com/cri-o/cri-o
8
rails-html-sanitizer
8
github.com/traefik/traefik/v3
8
github.com/mattermost/mattermost-plugin-confluence
8
pyload-ng
8
Microsoft.ChakraCore
8
opencv-python
8
onionshare-cli
8
org.opensearch.plugin:opensearch-security
8
alextselegidis/easyappointments
8
swagger-ui
8
opencv-contrib-python
8
impresscms/impresscms
8
org.jenkins-ci.plugins:subversion
8
Filter by Repository
https://github.com/tensorflow/tensorflow
200
https://github.com/moodle/moodle
192
https://github.com/liferay/liferay-portal
140
https://github.com/jenkinsci/jenkins
109
https://github.com/pimcore/pimcore
85
https://github.com/TYPO3/typo3
64
https://github.com/apache/tomcat
63
https://github.com/microweber/microweber
63
https://github.com/silverstripe/silverstripe-framework
50
https://github.com/xwiki/xwiki-platform
50
https://github.com/usememos/memos
50
https://github.com/django/django
50
https://github.com/rails/rails
46
https://github.com/keycloak/keycloak
45
https://github.com/thorsten/phpmyfaq
45
https://github.com/apache/airflow
44
https://github.com/librenms/librenms
42
https://github.com/kubernetes/kubernetes
40
https://github.com/mattermost/mattermost
36
https://github.com/mmaitre314/picklescan
34
https://github.com/star7th/showdoc
32
https://github.com/mantisbt/mantisbt
32
https://github.com/concretecms/concretecms
28
https://github.com/symfony/symfony
27
https://github.com/grafana/grafana
27
https://github.com/mautic/mautic
27
https://github.com/ansible/ansible
26
https://github.com/spring-projects/spring-framework
26
https://github.com/craftcms/cms
26
https://github.com/phpmyadmin/phpmyadmin
26
https://github.com/directus/directus
24
https://github.com/shopware/shopware
24
https://github.com/argoproj/argo-cd
24
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/Dolibarr/dolibarr
22
https://github.com/answerdev/answer
21
https://github.com/plone/Products.CMFPlone
20
https://github.com/firefly-iii/firefly-iii
20
https://github.com/apache/activemq
20
https://github.com/snipe/snipe-it
20
https://github.com/magento/magento2
20
https://github.com/cilium/cilium
19
https://github.com/livehelperchat/livehelperchat
18
https://github.com/openstack/nova
18
https://github.com/contao/contao
18
https://github.com/shopware/platform
17
https://github.com/apache/struts
17
https://github.com/matrix-org/synapse
16
https://github.com/ikus060/rdiffweb
16
https://github.com/gradio-app/gradio
16
https://github.com/netty/netty
15
https://github.com/getkirby/kirby
15
https://github.com/vyperlang/vyper
15
https://github.com/CVEProject/cvelist
15
https://github.com/apache/cxf
15
https://github.com/strapi/strapi
14
https://github.com/geoserver/geoserver
14
https://github.com/froxlor/froxlor
14
https://github.com/yetiforcecompany/yetiforcecrm
14
https://github.com/PaddlePaddle/Paddle
14
https://github.com/TYPO3/TYPO3.CMS
14
https://github.com/saltstack/salt
14
https://github.com/tinymce/tinymce
14
https://github.com/x-stream/xstream
14
https://github.com/baserproject/basercms
14
https://github.com/moby/moby
14
https://github.com/OpenNMS/opennms
14
https://github.com/octobercms/october
13
https://github.com/PrestaShop/PrestaShop
13
https://github.com/openfga/openfga
13
https://github.com/bcgit/bc-java
13
https://github.com/apache/nifi
13
https://github.com/go-gitea/gitea
13
https://github.com/rack/rack
13
https://github.com/nilsteampassnet/TeamPass
13
https://github.com/goharbor/harbor
13
https://github.com/helm/helm
12
https://github.com/hashicorp/consul
12
https://github.com/containerd/containerd
12
https://github.com/huggingface/transformers
12
https://github.com/traefik/traefik
12
https://github.com/TYPO3-CMS/core
12
https://github.com/dnnsoftware/Dnn.Platform
11
https://github.com/rancher/rancher
11
https://github.com/apache/zeppelin
11
https://github.com/OpenZeppelin/openzeppelin-contracts
11
https://github.com/openstack/keystone
11
https://github.com/ckeditor/ckeditor4
11
https://github.com/surrealdb/surrealdb
11
https://github.com/electron/electron
11
https://github.com/vaadin/platform
11
https://github.com/vitejs/vite
11
https://github.com/laravel/framework
11
https://github.com/intelliants/subrion
11
https://github.com/forkcms/forkcms
11
https://github.com/ethereum/go-ethereum
11
https://github.com/github/advisory-database
11
https://github.com/greenpau/caddy-security
10
https://github.com/bytecodealliance/wasmtime
10
https://github.com/aio-libs/aiohttp
10
https://github.com/decidim/decidim
10
https://github.com/simplesamlphp/simplesamlphp
10
https://github.com/liufee/cms
10
https://github.com/wallabag/wallabag
10
https://github.com/PHPOffice/PhpSpreadsheet
10
https://github.com/laurent22/joplin
10
https://github.com/vercel/next.js
10
https://github.com/backstage/backstage
10
https://github.com/TryGhost/Ghost
10
https://github.com/vllm-project/vllm
10
https://github.com/dotnet/runtime
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/opencast/opencast
9
https://github.com/puppetlabs/puppet
9
https://github.com/dpgaspar/Flask-AppBuilder
9
https://github.com/alkacon/opencms-core
9
https://github.com/thorsten/phpMyFAQ
9
https://github.com/pimcore/admin-ui-classic-bundle
9
https://github.com/urllib3/urllib3
9
https://github.com/publify/publify
9
https://github.com/jquery/jquery
9
https://github.com/jenkinsci/git-plugin
9
https://github.com/opensearch-project/security
8
https://github.com/modoboa/modoboa
8
https://github.com/rails/rails-html-sanitizer
8
https://github.com/getgrav/grav
8
https://github.com/onionshare/onionshare
8
https://github.com/OctoPrint/OctoPrint
8
https://github.com/rubygems/rubygems
8
https://github.com/sulu/sulu
8
https://github.com/zendframework/zendframework
8
https://github.com/ckan/ckan
8
https://github.com/denoland/deno
8
https://github.com/apache/superset
8
https://github.com/kubeedge/kubeedge
8
https://github.com/swagger-api/swagger-ui
8
https://github.com/pyload/pyload
8
https://github.com/gogs/gogs
8
https://github.com/eclipse/jetty.project
8
https://github.com/hashicorp/nomad
8
https://github.com/parse-community/parse-server
8
https://github.com/openbao/openbao
8
https://github.com/sparklemotion/nokogiri
8
https://github.com/pandao/editor.md
8
https://github.com/openstack/glance
8
https://github.com/nilsteampassnet/teampass
8
https://github.com/FlowiseAI/Flowise
8
https://github.com/LavaLite/cms
8
https://github.com/dolibarr/dolibarr
8
https://github.com/matrix-org/matrix-rust-sdk
7
https://github.com/chakra-core/ChakraCore
7
https://github.com/openstack/horizon
7
https://github.com/janeczku/calibre-web
7
https://github.com/n8n-io/n8n
7
https://github.com/scrapy/scrapy
7
https://github.com/vaadin/flow
7
https://github.com/dragonflyoss/dragonfly
7
https://github.com/opencontainers/runc
7
https://github.com/modxcms/revolution
7
https://github.com/MobSF/Mobile-Security-Framework-MobSF
7
https://github.com/nahsra/antisamy
7
https://github.com/zitadel/zitadel
7
https://github.com/vega/vega
7
https://github.com/undertow-io/undertow
7
https://github.com/nocodb/nocodb
7
https://github.com/croogo/croogo
7
https://github.com/python-pillow/Pillow
7
https://github.com/hashicorp/vault
7
https://github.com/Leantime/leantime
7
https://github.com/containers/podman
7
https://github.com/py-pdf/pypdf
7
https://github.com/google/fscrypt
7
https://github.com/jupyter/notebook
7
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
7
https://github.com/louislam/uptime-kuma
7
https://github.com/jenkinsci/blueocean-plugin
7
https://github.com/kevinpapst/kimai2
7
https://github.com/igniterealtime/Openfire
7
https://github.com/jeecgboot/jeecg-boot
7
https://github.com/bagisto/bagisto
7
https://github.com/opencv/opencv
7
https://github.com/twbs/bootstrap
7
https://github.com/Sylius/Sylius
7
https://github.com/zenml-io/zenml
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/sfackler/rust-openssl
6
https://github.com/NodeBB/NodeBB
6
https://github.com/dompdf/dompdf
6
https://github.com/roundup-tracker/roundup
6
https://github.com/wagtail/wagtail
6
https://github.com/pimcore/customer-data-framework
6
https://github.com/neorazorx/facturascripts
6
https://github.com/run-llama/llama_index
6
https://github.com/jenkinsci/configuration-as-code-plugin
6
https://github.com/tecnickcom/TCPDF
6
https://github.com/jenkinsci/subversion-plugin
6
https://github.com/cui2shark/security
6
https://github.com/cri-o/cri-o
6
https://github.com/oroinc/orocommerce
6