869 matches found
CVE-2017-3153
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS in the search functionality...
Design/Logic Flaw
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the edit-tag functionality...
CVE-2017-3155
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scripting...
CVE-2017-3154
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information...
CVE-2017-3151
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stored Cross-Site Scripting in the edit-tag functionality...
amundsen-metadata (>=3.5.0 <=3.13.0), amundsen-metadata-neo4j4 (>=3.9.0 <=3.9.0.post1) +1 more potentially affected by CVE-2017-3153 via apache-atlas (>=0.0.11 <=0.0.15)
apache-atlas PYPI version =0.0.11, =3.5.0, =3.9.0, =0.1.7, =0.1.9 Source cves: CVE-2017-3153 Source advisory: OSV:PYSEC-2017-109...
CVE-2017-3151
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stored Cross-Site Scripting in the edit-tag functionality...
PYSEC-2017-111
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scripting...
amundsen-metadata (>=3.5.0 <=3.13.0), amundsen-metadata-neo4j4 (>=3.9.0 <=3.9.0.post1) +1 more potentially affected by CVE-2016-8752 via apache-atlas (>=0.0.11 <=0.0.15)
apache-atlas PYPI version =0.0.11, =3.5.0, =3.9.0, =0.1.7, =0.1.9 Source cves: CVE-2016-8752 Source advisory: OSV:PYSEC-2017-105...
CVE-2017-3150
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to client-side script...
CVE-2017-3153
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS in the search functionality...
PYSEC-2017-105
Apache Atlas versions 0.6.0 incubating, 0.7.0 incubating, and 0.7.1 incubating allow access to the webapp directory contents by pointing to URIs like /js and /img...
Cross site scripting
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cross frame scripting...
amundsen-metadata (>=3.5.0 <=3.13.0), amundsen-metadata-neo4j4 (>=3.9.0 <=3.9.0.post1) +1 more potentially affected by CVE-2017-3154 via apache-atlas (>=0.0.11 <=0.0.15)
apache-atlas PYPI version =0.0.11, =3.5.0, =3.9.0, =0.1.7, =0.1.9 Source cves: CVE-2017-3154 Source advisory: OSV:PYSEC-2017-110...
CVE-2016-8752
Apache Atlas versions 0.6.0 incubating, 0.7.0 incubating, and 0.7.1 incubating allow access to the webapp directory contents by pointing to URIs like /js and /img...
CVE-2017-3152
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the edit-tag functionality...
PYSEC-2017-110
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information...
PYSEC-2017-105
Apache Atlas versions 0.6.0 incubating, 0.7.0 incubating, and 0.7.1 incubating allow access to the webapp directory contents by pointing to URIs like /js and /img...
CVE-2017-3150
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to client-side script...
PYSEC-2017-108
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM XSS in the edit-tag functionality...