Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Moderate Security Advisories

Loading...
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqYzgtNHI2Zy0yODJq
Moderate severity vulnerability that affects python-gnupg
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc5bXgtODh3Ny04Zjdx
XSS Filter Bypass via Encoded URL in validator
Ecosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjcjUteHI5aC1tdmM1
python-gnupg vulnerable to shell injection
Ecosystems: pypi
Packages: python-gnupg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzeHAtajczNy0yODJ2
Path Traversal in takeapeek
Ecosystems: npm
Packages: takeapeek
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpoZ3AtaHZqNi14MnAy
Stored Cross-Site Scripting in tianma-static
Ecosystems: npm
Packages: tianma-static
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnMnctNnIyNS0yajdw
Command Injection in libnmap
Ecosystems: npm
Packages: libnmap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0eHEtang0dy00Y2p2
Loofah Cross-site Scripting vulnerability
Ecosystems: rubygems
Packages: loofah
Source: GitHub Advisory Database
Blast Radius: 30.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2d20tMjYyNC1ycDl4
Apache ActiveMQ web console vulnerable to Cross-site Scripting
Ecosystems: maven
Packages: org.apache.activemq:activemq-web-console
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwdnItZzZnaC05bWMy
No Charset in Content-Type Header in express
Ecosystems: npm
Packages: express
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwcmgtMjU3dy05Mjc3
Cross-Site Scripting in handlebars
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjdzgtN2o2Yy1oY2Nw
Moderate severity vulnerability that affects io.vertx:vertx-core
Ecosystems: maven
Packages: io.vertx:vertx-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2cXItbW1oOC1jcDhm
Moderate severity vulnerability that affects com.sparkjava:spark-core
Ecosystems: maven
Packages: com.sparkjava:spark-core
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtcjQtdzY3cC12aDh4
Improper Input Validation in org.wildfly:wildfly-undertow
Ecosystems: maven
Packages: org.wildfly:wildfly-undertow
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1jZm0taDczdi02MzVt
Undertow-core vulnerable to HTTP Request Smuggling
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 24.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN4N2gtNWhmci1odmpt
Moderate severity vulnerability that affects io.undertow:undertow-core
Ecosystems: maven
Packages: io.undertow:undertow-core
Source: GitHub Advisory Database
Blast Radius: 27.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU2OHEtOWZ3NS0yOHdm
Moderate severity vulnerability that affects org.postgresql:pgjdbc-aggregate
Ecosystems: maven
Packages: org.postgresql:pgjdbc-aggregate
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEyNWotZ2Ntdi01cXBw
Moderate severity vulnerability that affects org.grails.plugins:fields and org.grails:grails-core
Ecosystems: maven
Packages: org.grails:grails-core, org.grails.plugins:fields
Source: GitHub Advisory Database
Blast Radius: 19.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ3M3YtNjZtai0ycW02
Moderate severity vulnerability that affects org.apache.qpid:apache-qpid-broker-j
Ecosystems: maven
Packages: org.apache.qpid:apache-qpid-broker-j
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhybXItZjVtNi1tOXBx
Moderate severity vulnerability that affects org.apache.commons:commons-compress
Ecosystems: maven
Packages: org.apache.commons:commons-compress
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyZ3YtaDd4NC1xdzhn
Eclipse Jetty Server generates error message containing sensitive information
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0ZzItOWhqNi01NDcy
Moderate severity vulnerability that affects com.rabbitmq:amqp-client and org.springframework.amqp:spring-amqp
Ecosystems: maven
Packages: com.rabbitmq:amqp-client, org.springframework.amqp:spring-amqp
Source: GitHub Advisory Database
Blast Radius: 23.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4NjUtY2M3Zy05cGZw
Moderate severity vulnerability that affects org.springframework.boot:spring-boot
Ecosystems: maven
Packages: org.springframework.boot:spring-boot
Source: GitHub Advisory Database
Blast Radius: 23.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05am0tcmhybS1nY3hq
Path traversal in org.springframework.integration:spring-integration-zip
Ecosystems: maven
Packages: org.springframework.integration:spring-integration-zip
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlncDQtcXJmZi1jNjQ4
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0Z2ctOWY2Mi1qZnBo
OrientDB Studio web management interface is vulnerable to clickjacking attacks
Ecosystems: maven
Packages: com.orientechnologies:orientdb-studio
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2d3ItZmNoMi12bTV3
OrientDB Server Community Edition uses insufficiently random values to generate session IDs
Ecosystems: maven
Packages: com.orientechnologies:orientdb-server
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0NHYteGMzZy12N2px
OWASP AntiSamy Cross-site Scripting vulnerability
Ecosystems: maven
Packages: org.owasp.antisamy:antisamy
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY4M3ctNmg5ai01N3dx
Moderate severity vulnerability that affects org.owasp.antisamy:antisamy
Ecosystems: maven
Packages: org.owasp.antisamy:antisamy
Source: GitHub Advisory Database
Blast Radius: 16.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ2N3gtNGhwYy1oZjlm
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring2, and org.apache.cxf.fediz:fediz-spring3
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fediz:fediz-spring3, org.apache.cxf.fediz:fediz-spring2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdodzctaDI1di05cXZ4
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-jetty9, and org.apache.cxf.fediz:fediz-spring2
Ecosystems: maven
Packages: org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fediz-jetty9, org.apache.cxf.fediz:fediz-spring2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1OXEtMzJnOC12dnA3
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3ajctcHczdi0zdjN4
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3N3ItNmY2NC00Nzhx
keycloak-core discloses system properties
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 19.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3OHgtMm1xdi13Nnh3
Moderate severity vulnerability that affects org.keycloak:keycloak-core
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2Z3YtM3Izdi1nd2dq
keycloak-core vulnerable to timing attacks against JWS token verification
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: GitHub Advisory Database
Blast Radius: 18.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ2N3ctNTM1ai1ycTVt
Pivotal Spring Framework DoS Attack with XML Input
Ecosystems: maven
Packages: org.springframework:spring-web
Source: GitHub Advisory Database
Blast Radius: 28.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1dmctMnY3My12bTYy
Moderate severity vulnerability that affects org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc4aHctNzk0Yy00ajln
Path Traversal in org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjcGYtdmo1My03aDJt
Denial of Service in org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 33.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1OTYtZndocS04eDQ4
Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework.security:spring-security-core, org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjOXYtaDI4Zi1qY21m
There is a XML external entity expansion (XXE) vulnerability in Apache Solr config files
Ecosystems: maven
Packages: org.apache.solr:solr-core
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdweDMtNmY2Zy1oeGNq
XML external entity expansion in org.apache.solr:solr-core
Ecosystems: maven
Packages: org.apache.solr:solr-core
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM4Y2MtcDNqNy00Yzdm
Moderate severity vulnerability that affects org.apache.mesos:mesos
Ecosystems: maven
Packages: org.apache.mesos:mesos
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzNXAtY2hjNi03eDU3
Moderate severity vulnerability that affects org.apache.storm:storm-core
Ecosystems: maven
Packages: org.apache.storm:storm-core
Source: GitHub Advisory Database
Blast Radius: 21.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd4OTYtdmdmNy1od2Zn
In Apache PDFBox a carefully crafted PDF file can trigger an extremely long running computation
Ecosystems: maven
Packages: org.apache.pdfbox:pdfbox
Source: GitHub Advisory Database
Blast Radius: 21.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmamgtZmpnZy1tZnBx
Moderate severity vulnerability that affects org.apache.ranger:ranger
Ecosystems: maven
Packages: org.apache.ranger:ranger
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh2N3gteDZ3ci14eDdn
Apache Ranger policy engine incorrectly matches paths in certain conditions
Ecosystems: maven
Packages: org.apache.ranger:ranger-plugins-common
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3bWYtcWd4Zi1xbXZm
Apache Ranger admin users can store some arbitrary javascript code to be executed when normal users login and access policies
Ecosystems: maven
Packages: org.apache.ranger:ranger
Source: GitHub Advisory Database
Blast Radius: 1.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZoeGMtOGpqcS04NTlq
Moderate severity vulnerability that affects org.apache.ranger:ranger
Ecosystems: maven
Packages: org.apache.ranger:ranger
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmN3EteHFtMy02OTIz
Apache Ranger allows remote authenticated administrators to inject arbitrary web script or HTML
Ecosystems: maven
Packages: org.apache.ranger:ranger
Source: GitHub Advisory Database
Blast Radius: 1.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ2NTItbWo1ci03ajJt
Apache Tomcat Race Condition vulnerability
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core
Source: GitHub Advisory Database
Blast Radius: 24.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp4NmgtM2ZqeC1jZ3Y1
Apache Tomcat information exposure vulnerability
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core
Source: GitHub Advisory Database
Blast Radius: 27.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZyeGotNThqaC00MzZy
Apache Tomcat unauthorized access vulnerability
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core
Source: GitHub Advisory Database
Blast Radius: 24.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVxOTktZjM0bS02N2dj
Apache Tomcat Open Redirect vulnerability
Ecosystems: maven
Packages: org.apache.tomcat.embed:tomcat-embed-core
Source: GitHub Advisory Database
Blast Radius: 17.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtdjctY3E3NS0zcWpt
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk14, org.bouncycastle:bcprov-jdk15
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI5Y2gtbTRmaC1mYzdx
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM4eGYtbTRmZi1qY3hq
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15
Ecosystems: maven
Packages: org.bouncycastle:bcprov-jdk15, org.bouncycastle:bcprov-jdk14
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFoM20tcXc2di1xdmhn
Moderate severity vulnerability that affects io.vertx:vertx-core
Ecosystems: maven
Packages: io.vertx:vertx-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1eG0tdjhncS03anF4
Excessive memory allocation
Ecosystems: maven
Packages: io.vertx:vertx-core
Source: GitHub Advisory Database
Blast Radius: 25.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVtZjctMjZtdy0zcnFy
Moderate severity vulnerability that affects org.apache.tika:tika-core
Ecosystems: maven
Packages: org.apache.tika:tika-core
Source: GitHub Advisory Database
Blast Radius: 20.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo1M2otZ21yOS1oOGcz
Comparison errorr in org.apache.tika:tika-core
Ecosystems: maven
Packages: org.apache.tika:tika-core
Source: GitHub Advisory Database
Blast Radius: 20.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2ZzMtdjQ2cS01cDI4
Moderate severity vulnerability that affects org.apache.tika:tika-core
Ecosystems: maven
Packages: org.apache.tika:tika-core
Source: GitHub Advisory Database
Blast Radius: 22.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNjanAtdzcyMy0yamYy
Apache Tika Server exposes sensitive information
Ecosystems: maven
Packages: org.apache.tika:tika-server
Source: GitHub Advisory Database
Blast Radius: 4.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2OTktM3dnYy03aDcy
org.apache.tika:tika-parsers has an Infinite Loop vulnerability
Ecosystems: maven
Packages: org.apache.tika:tika-parsers
Source: GitHub Advisory Database
Blast Radius: 20.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtajUtd3Y5Ni1yMmNo
Denial of service vulnerability in org.apache.httpcomponents:httpclient
Ecosystems: maven
Packages: org.apache.httpcomponents:httpclient
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmaDUtM2doaC13Zmp4
Improper Verification of Cryptographic Signature in org.apache.httpcomponents:httpclient
Ecosystems: maven
Packages: org.apache.httpcomponents:httpclient
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTczY3EtZmhwMy04cnB3
Moderate severity vulnerability that affects org.restlet.jse:org.restlet
Ecosystems: maven
Packages: org.restlet.jse:org.restlet
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4cXItZ3JxNC1xd2d4
Junrar vulnerable to Infinite Loop
Ecosystems: maven
Packages: com.github.junrar:junrar
Source: GitHub Advisory Database
Blast Radius: 14.5
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1oeDItcjNqeC1nOTRj
Apache Camel allows remote actor to read arbitrary files via external entity in invalid XML string or GenericFile object
Ecosystems: maven
Packages: org.apache.camel:camel-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNocmMtZjQzOS03Mjdn
Apache Camel XML External Entity vulnerability
Ecosystems: maven
Packages: org.apache.camel:camel-core
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp2NzQtZjlwai14cDNm
Apache Camel's Mail is vulnerable to path traversal
Ecosystems: maven
Packages: org.apache.camel:camel-mail
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxZmMtY3ZqcC1tZ3Bx
Moderate severity vulnerability that affects org.apache.ignite:ignite-core
Ecosystems: maven
Packages: org.apache.ignite:ignite-core
Source: GitHub Advisory Database
Blast Radius: 17.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk2anEtNzV3aC0yNjU4
Moderate severity vulnerability that affects apache axis
Ecosystems: maven
Packages: axis:axis, org.apache.axis:axis
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI1M3Ytdm04Ny1mNzJj
Improper Validation of Certificates in apache axis
Ecosystems: maven
Packages: axis:axis, org.apache.axis:axis
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNncHctMmdwaC0ycjln
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.App, and Microsoft.AspNetCore.Server.Kestrel.Core
Ecosystems: nuget
Packages: Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.Kestrel.Core, Microsoft.AspNetCore.App
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNtMnItcTh4My14bWY3
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.Kestrel.Core, Microsoft.AspNetCore.Server.Kestrel.Transport.Abstractions, and Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv
Ecosystems: nuget
Packages: Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv, Microsoft.AspNetCore.Server.Kestrel.Transport.Abstractions, Microsoft.AspNetCore.Server.Kestrel.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNoNnAtNGpjbS1oOHZo
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc and Microsoft.AspNetCore.Mvc.Core
Ecosystems: nuget
Packages: Microsoft.AspNetCore.Mvc.WebApiCompatShim, Microsoft.AspNetCore.Mvc.ViewFeatures, Microsoft.AspNetCore.Mvc.TagHelpers, Microsoft.AspNetCore.Mvc.Razor, Microsoft.AspNetCore.Mvc.Razor.Host, Microsoft.AspNetCore.Mvc.Localization, Microsoft.AspNetCore.Mvc.Formatters.Xml, Microsoft.AspNetCore.Mvc.Formatters.Json, Microsoft.AspNetCore.Mvc.DataAnnotations, Microsoft.AspNetCore.Mvc.Cors, Microsoft.AspNetCore.Mvc.ApiExplorer, Microsoft.AspNetCore.Mvc.Abstractions, System.Net.WebSockets.Client, System.Net.Security, System.Net.Http.WinHttpHandler, System.Text.Encodings.Web, System.Net.Http, Microsoft.AspNetCore.Mvc.Core, Microsoft.AspNetCore.Mvc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdyNGMtNXJxNi1jZ2gz
OPC UA applications can allow a remote attacker to determine a Server's private key
Ecosystems: nuget
Packages: OPCFoundation.NetStandard.Opc.Ua
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4ZjQtMnc0cC1taGpj
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc
Ecosystems: nuget
Packages: Microsoft.AspNetCore.Mvc.WebApiCompatShim, Microsoft.AspNetCore.Mvc.ViewFeatures, Microsoft.AspNetCore.Mvc.TagHelpers, Microsoft.AspNetCore.Mvc.Razor, Microsoft.AspNetCore.Mvc.Razor.Host, Microsoft.AspNetCore.Mvc.Localization, Microsoft.AspNetCore.Mvc.Formatters.Xml, Microsoft.AspNetCore.Mvc.Formatters.Json, Microsoft.AspNetCore.Mvc.DataAnnotations, Microsoft.AspNetCore.Mvc.Cors, Microsoft.AspNetCore.Mvc.ApiExplorer, Microsoft.AspNetCore.Mvc.Abstractions, System.Net.WebSockets.Client, System.Net.Security, System.Net.Http.WinHttpHandler, System.Text.Encodings.Web, System.Net.Http, Microsoft.AspNetCore.Mvc.Core, Microsoft.AspNetCore.Mvc
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgzMzYtbXhwNi12NWg5
Moderate severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua
Ecosystems: nuget
Packages: OPCFoundation.NetStandard.Opc.Ua
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY1Y2YtZjdweC14cG1o
Moderate severity vulnerability that affects org.apache.qpid:proton-j
Ecosystems: maven
Packages: org.apache.qpid:proton-j
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqOWgtbXdocS04dmht
Improper Input Validation in org.apache.qpid:qpid-broker
Ecosystems: maven
Packages: org.apache.qpid:qpid-broker
Source: GitHub Advisory Database
Blast Radius: 15.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5aDQtZzhwNS1qZ3E2
Moderate severity vulnerability that affects org.apache.juddi:juddi-client
Ecosystems: maven
Packages: org.apache.juddi:juddi-client
Source: GitHub Advisory Database
Blast Radius: 11.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlncDctanZtMi1yNG14
Apache Struts Improper Input Validation vulnerability
Ecosystems: maven
Packages: org.apache.struts:struts2-core
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhjcm0tcXBwOC1oY3c0
Moderate severity vulnerability that affects org.apache.struts:struts2-rest-plugin
Ecosystems: maven
Packages: org.apache.struts:struts2-rest-plugin
Source: GitHub Advisory Database
Blast Radius: 14.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVjNjYteDR3bS1yamZ4
Cross-site scripting (XSS) vulnerability in the user-profile biography section in DotNetNuke (DNN)
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3Nm0tZjVjeC04cmc0
Moderate severity vulnerability that affects DotNetNuke.Core
Ecosystems: nuget
Packages: DotNetNuke.Core
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWYyNngtcHI5Ni12dzg2
Moderate severity vulnerability that affects org.springframework:spring-core
Ecosystems: maven
Packages: org.springframework:spring-core
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlnY20tZjR4My04anB3
Spring Framework Cross Site Tracing (XST)
Ecosystems: maven
Packages: org.springframework:spring-web
Source: GitHub Advisory Database
Blast Radius: 30.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5OGotNWNjOC1jbWY1
ZipSlip in org.apache.storm:storm-core
Ecosystems: maven
Packages: org.apache.storm:storm-core
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OTYtbW0yZy1jOG03
Next.js has cross site scripting (XSS) vulnerability via the 404 or 500 /_error page
Ecosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 33.8
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFodjktNzI4ci02anFn
ReDoS via long string of semicolons in tough-cookie
Ecosystems: npm
Packages: tough-cookie
Source: GitHub Advisory Database
Blast Radius: 33.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThwNXAtZmY3eC1odzdx
Cross-Site Scripting in public
Ecosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2NGMtcHhqai1oODY2
Ansible does not verify that the server hostname matches a domain name in certificates
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg0Y20tbTM2aC1jNnFq
Improper Input Validation in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp3Y2Mtajc4dy1qNzN3
Ansible exposes sensitive data in log files and on the terminal
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Blast Radius: 24.6
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxMnAtZmo0OS12cHhq
In marshmallow library the schema "only" option treats an empty list as implying no "only" option
Ecosystems: pypi
Packages: marshmallow
Source: GitHub Advisory Database
Blast Radius: 23.1
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJyY20tcGhjOS0zOTQ1
Pyopenssl Incorrect Memory Management
Ecosystems: pypi
Packages: pyopenssl
Source: GitHub Advisory Database
Blast Radius: 24.3
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnMzMtZjI2Mi14anA0
Cryptographically Weak PRNG in randomatic
Ecosystems: npm
Packages: randomatic
Source: GitHub Advisory Database
Blast Radius: 31.9
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2MmYtYzJ3Zy1tOGM4
Denial of Service in protobufjs
Ecosystems: npm
Packages: protobufjs
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 5 years ago
Statistics
Advisories: 18,369
Packages: 8,294
Repositories: 2,453
Ecosystems: 12
Filter by Severity
Moderate 7,928 High 6,358 Critical 2,809 Low 985
Filter by Ecosystem
maven 2,550 packagist 2,148 pypi 1,736 npm 1,061 go 875 nuget 537 rubygems 373 cargo 261 hex 14 swift 12 pub 3 actions 3
Filter by Package
moodle/moodle 247 tensorflow 207 tensorflow-cpu 191 tensorflow-gpu 190 org.jenkins-ci.main:jenkins-core 114 magento/community-edition 96 org.apache.tomcat:tomcat 92 pimcore/pimcore 86 typo3/cms 66 microweber/microweber 62 django 54 dolibarr/dolibarr 53 apache-airflow 52 typo3/cms-core 51 phpmyadmin/phpmyadmin 50 thorsten/phpmyfaq 45 actionpack 42 github.com/usememos/memos 42 apache-superset 39 drupal/core 36 plone 35 concrete5/concrete5 34 showdoc/showdoc 34 librenms/librenms 32 org.keycloak:keycloak-core 31 ansible 31 github.com/mattermost/mattermost-server/v6 30 drupal/drupal 28 Plone 28 symfony/symfony 27 github.com/mattermost/mattermost/server/v8 27 intelliants/subrion 27 craftcms/cms 26 com.liferay.portal:release.portal.bom 25 silverstripe/framework 25 snipe/snipe-it 24 org.elasticsearch:elasticsearch 24 github.com/grafana/grafana 23 baserproject/basercms 22 github.com/answerdev/answer 21 org.apache.struts:struts2-core 20 k8s.io/kubernetes 20 grumpydictator/firefly-iii 19 froxlor/froxlor 18 shopware/shopware 18 shopware/platform 18 remdex/livehelperchat 18 matrix-synapse 18 nilsteampassnet/teampass 18 rdiffweb 18 getkirby/cms 17 org.apache.tomcat.embed:tomcat-embed-core 16 moin 16 vyper 15 github.com/argoproj/argo-cd/v2 15 yetiforce/yetiforce-crm 14 salt 14 nokogiri 14 prestashop/prestashop 14 puppet 14 nova 13 org.keycloak:keycloak-services 13 shopware/core 13 org.xwiki.platform:xwiki-platform-oldcore 13 forkcms/forkcms 13 io.undertow:undertow-core 13 Pillow 13 com.jfinal:jfinal 13 mautic/core 13 github.com/goharbor/harbor 12 Django 12 org.apache.solr:solr-core 12 tribalsystems/zenario 12 github.com/hashicorp/vault 12 com.thoughtworks.xstream:xstream 12 github.com/hashicorp/consul 12 github.com/docker/docker 12 tinymce 12 org.apache.jspwiki:jspwiki-main 12 lavalite/cms 11 github.com/argoproj/argo-cd 11 pyftpdlib 11 github.com/cilium/cilium 11 github.com/hashicorp/nomad 11 getgrav/grav 11 DotNetNuke.Core 11 feehi/feehicms 11 genix/cms 11 neutron 11 org.keycloak:keycloak-parent 11 joplin 10 com.vaadin:vaadin-bom 10 github.com/mattermost/mattermost-server 10 francoisjacquet/rosariosis 10 typo3/cms-backend 10 helm.sh/helm/v3 10 notebook 10 org.apache.jspwiki:jspwiki-war 10 PaddlePaddle 10 ec-cube/ec-cube 10 activesupport 10 org.apache.nifi:nifi 10 fat_free_crm 10 org.springframework:spring-core 10 org.springframework.security:spring-security-core 10 contao/core-bundle 10 rack 10 @openzeppelin/contracts-upgradeable 10 wallabag/wallabag 10 org.eclipse.jetty:jetty-server 10 github.com/containerd/containerd 10 github.com/greenpau/caddy-security 10 @openzeppelin/contracts 10 github.com/ethereum/go-ethereum 10 publify_core 9 cakephp/cakephp 9 directus 9 TinyMCE 9 tinymce/tinymce 9 bolt/bolt 9 org.jenkins-ci.plugins:git 9 ghost 9 org.jenkins-ci.plugins:script-security 9 org.igniterealtime.openfire:parent 9 glance 9 jquery-rails 9 zendframework/zendframework1 9 gogs.io/gogs 9 swagger-ui 9 org.mortbay.jetty:jetty 9 org.opencrx:opencrx-core-models 9 code.gitea.io/gitea 9 rubygems-update 9 ckeditor4 9 angular 9 org.apache.archiva:archiva 8 Microsoft.ChakraCore 8 contao/contao 8 roundup 8 bootstrap 8 rails-html-sanitizer 8 github.com/openfga/openfga 8 opencv-python 8 impresscms/impresscms 8 actionview 8 simplesamlphp/simplesamlphp 8 opencv-contrib-python 8 editor.md 8 silverstripe/cms 8 rails 8 electron 8 centreon/centreon 8 org.opencms:opencms-core 8 github.com/kubeedge/kubeedge 8 org.webjars.npm:jquery 8 jquery 8 wasmtime 8 org.bouncycastle:bcprov-jdk14 8 org.jenkins-ci.plugins:electricflow 8 org.apache.activemq:activemq-client 8 vantage6 7 silverstripe/admin 7 pyload-ng 7 trytond 7 validator 7 org.apache.james:james-server 7 phpbb/phpbb 7 OctoPrint 7 wagtail 7 kevinpapst/kimai2 7 next 7 github.com/moby/moby 7 org.bouncycastle:bcprov-jdk15on 7 org.jenkins-ci.plugins:config-file-provider 7 org.jenkins-ci.plugins:subversion 7 modoboa 7 org.jenkins-ci.plugins:email-ext 7 org.bouncycastle:bcprov-jdk15 7 org.apache.santuario:xmlsec 7 admidio/admidio 7 aiohttp 7 io.jenkins.blueocean:blueocean 7 io.jenkins:configuration-as-code 7 phpmyfaq/phpmyfaq 7 org.apache.cxf:cxf-core 7 org.owasp.antisamy:antisamy 7 com.vaadin:flow-server 7 keystone 7 jquery-ui 7 jQuery 7 github.com/google/fscrypt 7 org.opennms:opennms 7 jquery-ui-rails 7 sylius/sylius 7 activerecord 7 jQuery.UI.Combined 7 pillow 7 org.webjars.npm:jquery-ui 7 url-parse 6 sanitize-html 6
Filter by Repository
https://github.com/tensorflow/tensorflow 207 https://github.com/moodle/moodle 164 https://github.com/jenkinsci/jenkins 90 https://github.com/pimcore/pimcore 83 https://github.com/microweber/microweber 58 https://github.com/apache/tomcat 53 https://github.com/apache/airflow 51 https://github.com/thorsten/phpmyfaq 45 https://github.com/django/django 43 https://github.com/usememos/memos 42 https://github.com/xwiki/xwiki-platform 38 https://github.com/rails/rails 33 https://github.com/TYPO3/typo3 32 https://github.com/kubernetes/kubernetes 32 https://github.com/star7th/showdoc 32 https://github.com/librenms/librenms 30 https://github.com/plone/Products.CMFPlone 29 https://github.com/keycloak/keycloak 27 https://github.com/ansible/ansible 26 https://github.com/symfony/symfony 22 https://github.com/phpmyadmin/phpmyadmin 22 https://github.com/spring-projects/spring-framework 21 https://github.com/Dolibarr/dolibarr 21 https://github.com/answerdev/answer 21 https://github.com/craftcms/cms 21 https://github.com/snipe/snipe-it 20 https://github.com/apache/activemq 19 https://github.com/argoproj/argo-cd 19 https://github.com/concretecms/concretecms 19 https://github.com/firefly-iii/firefly-iii 19 https://github.com/livehelperchat/livehelperchat 18 https://github.com/python-pillow/Pillow 18 https://github.com/grafana/grafana 18 https://github.com/ikus060/rdiffweb 18 https://github.com/shopware/platform 17 https://github.com/matrix-org/synapse 17 https://github.com/apache/struts 17 https://github.com/magento/magento2 16 https://github.com/shopware/shopware 16 https://github.com/CVEProject/cvelist 15 https://github.com/vyperlang/vyper 15 https://github.com/OpenNMS/opennms 14 https://github.com/yetiforcecompany/yetiforcecrm 14 https://github.com/TYPO3/TYPO3.CMS 14 https://github.com/froxlor/froxlor 14 https://github.com/PaddlePaddle/Paddle 14 https://github.com/go-gitea/gitea 13 https://github.com/x-stream/xstream 13 https://github.com/mautic/mautic 13 https://github.com/getkirby/kirby 13 https://github.com/octobercms/october 13 https://github.com/netty/netty 12 https://github.com/goharbor/harbor 12 https://github.com/apache/cxf 12 https://github.com/tinymce/tinymce 12 https://github.com/intelliants/subrion 11 https://github.com/contao/contao 11 https://github.com/forkcms/forkcms 11 https://github.com/PrestaShop/PrestaShop 11 https://github.com/cilium/cilium 11 https://github.com/silverstripe/silverstripe-framework 11 https://github.com/nilsteampassnet/TeamPass 10 https://github.com/containerd/containerd 10 https://github.com/moby/moby 10 https://github.com/vaadin/platform 10 https://github.com/ethereum/go-ethereum 10 https://github.com/laurent22/joplin 10 https://github.com/greenpau/caddy-security 10 https://github.com/saltstack/salt 10 https://github.com/helm/helm 10 https://github.com/baserproject/basercms 10 https://github.com/mattermost/mattermost 10 https://github.com/jquery/jquery 10 https://github.com/liufee/cms 10 https://github.com/OpenZeppelin/openzeppelin-contracts 10 https://github.com/strapi/strapi 9 https://github.com/fatfreecrm/fat_free_crm 9 https://github.com/publify/publify 9 https://github.com/apache/nifi 9 https://github.com/sparklemotion/nokogiri 9 https://github.com/github/advisory-database 9 https://github.com/geoserver/geoserver 9 https://github.com/jenkinsci/git-plugin 9 https://github.com/puppetlabs/puppet 9 https://github.com/electron/electron 9 https://github.com/kubeedge/kubeedge 8 https://github.com/directus/directus 8 https://github.com/jupyter/notebook 8 https://github.com/hashicorp/consul 8 https://github.com/openfga/openfga 8 https://github.com/LavaLite/cms 8 https://github.com/wallabag/wallabag 8 https://github.com/nilsteampassnet/teampass 8 https://github.com/getgrav/grav 8 https://github.com/TryGhost/Ghost 8 https://github.com/bcgit/bc-java 8 https://github.com/rails/rails-html-sanitizer 8 https://github.com/bytecodealliance/wasmtime 8 https://github.com/rack/rack 8 https://github.com/eclipse/jetty.project 8 https://github.com/ckeditor/ckeditor4 8 https://github.com/pandao/editor.md 8 https://github.com/swagger-api/swagger-ui 8 https://github.com/rubygems/rubygems 8 https://github.com/apache/zeppelin 7 https://github.com/pyload/pyload 7 https://github.com/thorsten/phpMyFAQ 7 https://github.com/twbs/bootstrap 7 https://github.com/aio-libs/aiohttp 7 https://github.com/dolibarr/dolibarr 7 https://github.com/kevinpapst/kimai2 7 https://github.com/opencv/opencv 7 https://github.com/hashicorp/vault 7 https://github.com/giampaolo/pyftpdlib 7 https://github.com/jeecgboot/jeecg-boot 7 https://github.com/gogs/gogs 7 https://github.com/jenkinsci/blueocean-plugin 7 https://github.com/vaadin/flow 7 https://github.com/modoboa/modoboa 7 https://github.com/traefik/traefik 7 https://github.com/google/fscrypt 7 https://github.com/nahsra/antisamy 7 https://github.com/wagtail/wagtail 7 https://github.com/chakra-core/ChakraCore 7 https://github.com/vantage6/vantage6 7 https://github.com/opensearch-project/security 6 https://github.com/cui2shark/security 6 https://github.com/parse-community/parse-server 6 https://github.com/oroinc/orocommerce 6 https://github.com/containers/podman 6 https://github.com/d4wner/Vulnerabilities-Report 6 https://github.com/dompdf/dompdf 6 https://github.com/jenkinsci/script-security-plugin 6 https://github.com/croogo/croogo 6 https://github.com/opencast/opencast 6 https://github.com/ipython/ipython 6 https://github.com/1Panel-dev/1Panel 6 https://github.com/cosmos/cosmos-sdk 6 https://github.com/jenkinsci/configuration-as-code-plugin 6 https://github.com/jquery/jquery-ui 6 https://github.com/pimcore/admin-ui-classic-bundle 6 https://github.com/jenkinsci/config-file-provider-plugin 6 https://github.com/neorazorx/facturascripts 6 https://github.com/simplesamlphp/simplesamlphp 6 https://github.com/urllib3/urllib3 6 https://github.com/pimcore/customer-data-framework 6 https://github.com/panva/jose 6 https://github.com/dotnet/runtime 6 https://github.com/igniterealtime/Openfire 6 https://github.com/onionshare/onionshare 6 https://github.com/jenkinsci/fortify-on-demand-uploader-plugin 6 https://github.com/umbraco/Umbraco-CMS 6 https://github.com/cubefs/cubefs 6 https://github.com/backstage/backstage 6 https://github.com/cloudflare/cfrpki 6 https://github.com/vercel/next.js 5 https://github.com/lxml/lxml 5 https://github.com/vapor/vapor 5 https://github.com/hyperium/hyper 5 https://github.com/Sylius/Sylius 5 https://github.com/kivikakk/comrak 5 https://github.com/jenkinsci/codedx-plugin 5 https://github.com/apache/kylin 5 https://github.com/zitadel/zitadel 5 https://github.com/nodejs/undici 5 https://github.com/bolt/bolt 5 https://github.com/quarkusio/quarkus 5 https://bitbucket.org/snakeyaml/snakeyaml 5 https://github.com/OctoPrint/OctoPrint 5 https://github.com/yiisoft/yii2 5 https://github.com/cri-o/cri-o 5 https://github.com/rancher/rancher 5 https://github.com/sulu/sulu 5 https://github.com/Amanieu/parking_lot 5 https://github.com/apache/lucene-solr 5 https://github.com/lief-project/LIEF 5 https://github.com/unshiftio/url-parse 5 https://github.com/apache/tika 5 https://github.com/paritytech/frontier 5 https://github.com/etcd-io/etcd 5 https://github.com/puma/puma 5 https://github.com/hashicorp/nomad 5 https://github.com/NodeBB/NodeBB 5 https://github.com/cloudfoundry/uaa 5 https://github.com/admidio/admidio 5 https://github.com/numpy/numpy 5 https://github.com/semplon/GeniXCMS 5 https://github.com/centreon/centreon-archived 5 https://github.com/jenkinsci/subversion-plugin 5 https://github.com/alextselegidis/easyappointments 5 https://github.com/xuxueli/xxl-job 5 https://github.com/pmmp/PocketMine-MP 5 https://github.com/nervosnetwork/ckb 5 https://github.com/cakephp/cakephp 5 https://github.com/opencontainers/runc 5 https://github.com/evershopcommerce/evershop 5 https://github.com/undertow-io/undertow 5 https://github.com/jenkinsci/electricflow-plugin 5 https://github.com/openstack/keystone 5