Lucene search
China National Vulnerability DatabaseCNVD-2023-85613HistorySep 18, 2023 - 12:00 a.m.
SiYuan Notes Software Web App is a privacy-first personal knowledge management system that supports full offline use as well as end-to-end encrypted synchronization. Yunnan ChainDrop Technology Co., Ltd. has an XSS vulnerability in the Siyuan Notes Software Web application, which can be exploited by attackers to obtain sensitive information such as user cookies.
2023-09-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
siyuan notes
personal knowledge management
full offline use
end-to-end encryption
xss vulnerability
apache airflow
open source platform
code execution vulnerability
wrong pip package
Apache Airflow is the United States Apache (Apache) Foundation’s set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. A code execution vulnerability exists in Apache Airflow HDFS Provider, which stems from a documentation message that instructs the user to install the wrong pip package, which has an unclaimed package name that can be exploited by an attacker to cause arbitrary code execution.
Related
prion
prion
Code injection
2023-09-14 08:15:00
vulnrichment
vulnrichment
osv
osv
Apache HDFS Provider error message suggested
2023-09-14 09:30:28
CVE-2023-41267
2023-09-14 08:15:07
nvd
nvd
CVE-2023-41267
2023-09-14 08:15:07
cvelist
cvelist
veracode
veracode
Arbitrary Code Execution
2023-09-22 11:26:18
github
github
Apache HDFS Provider error message suggested
2023-09-14 09:30:28
cve
cve
CVE-2023-41267
2023-09-14 08:15:07
nessus
nessus