Lucene search
K

PYSEC-2020-19

🗓️ 17 Sep 2020 14:15:00Reported by Python Packaging AdvisoryType 
pypa
 pypa
🔗 github.com👁 5 Views

Apache Airflow older than 1.10.12 has XSS in the origin parameter for endpoints like trigger.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2020-13944
11 Dec 202016:35
circl
CNVD
Apache Airflow Cross-Site Scripting Vulnerability (CNVD-2020-52628)
18 Sep 202000:00
cnvd
CVE
CVE-2020-13944
17 Sep 202014:01
cve
Cvelist
CVE-2020-13944
17 Sep 202014:01
cvelist
Fortinet
Multiple vulnerabilities in Apache Airflow
7 Jun 202200:00
fortinet
Github Security Blog
Apache Airflow Cross-site Scripting
18 Jun 202118:29
github
Github Security Blog
Apache Airflow cross-site scripting due to incomplete fix for CVE-2020-13944
20 Apr 202116:40
github
NVD
CVE-2020-13944
17 Sep 202014:15
nvd
OSV
BIT-AIRFLOW-2020-13944
6 Mar 202411:00
osv
OSV
GHSA-4PWQ-FJ89-6RJC Apache Airflow Cross-site Scripting
18 Jun 202118:29
osv
Rows per page
Vulners
Node
pypiapache-airflowRange01.10.12

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 May 2021 00:15Current
6.4Medium risk
Vulners AI Score6.4
CVSS 24.3
CVSS 3.16.1
EPSS0.25076
5