12 matches found
CVE-2024-28423
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
CVE-2024-28423
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
PYSEC-2024-270
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
PYSEC-2024-270
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
PYSEC-2024-263
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
PYSEC-2024-263
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
CVE-2024-28423
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
PT-2024-22426 · Unknown · Airflow-Diagrams
Name of the Vulnerable Software and Affected Versions: Airflow-Diagrams version 2.1.0 Description: The issue is related to an arbitrary file upload vulnerability in the unsafe load function at cli.py. This allows attackers to execute arbitrary code via uploading a crafted YML file. Recommendation...
Airflow-Diagrams Security Vulnerability
airflow-diagrams is a diagramming tool from the individual developer Felix Uellendall. A security vulnerability exists in Airflow-Diagrams version v2.1.0, which stems from the unsafeload function in cli.py containing an arbitrary file upload vulnerability that allows an attacker to execute...
CVE-2024-28423
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
CVE-2024-28423
Airflow-Diagrams v2.1.0 was discovered to contain an arbitrary file upload vulnerability in the unsafeload function at cli.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted YML file...
CVE-2024-28423
Airflow-Diagrams v2.1.0 is affected by an arbitrary file upload vulnerability in the unsafe_load function (cli.py). The root cause is unsafe YAML loading, allowing an attacker to execute arbitrary code by uploading a crafted YAML file. Documents confirm the affected component and vulnerability pa...