A toolchain to search for common vulnerabilies in open source Web applications based on published CVEs.