27 matches found
PYSEC-2020-20
In Apache Airflow versions prior to 1.10.13, the Charts and Query View of the old Flask-admin based UI were vulnerable for SSRF attack...
PYSEC-2020-20
In Apache Airflow versions prior to 1.10.13, the Charts and Query View of the old Flask-admin based UI were vulnerable for SSRF attack...
Apache Airflow 代码问题漏洞
Apache Airflow is an open source tool for orchestrating complex computational workflows and data processing pipelines. A server-side request forgery vulnerability exists in the Chart and Query View of the old UI in Apache Airflow versions prior to 1.10.13. No details of the vulnerability are...
PT-2020-15029 · Apache · Apache Airflow
Name of the Vulnerable Software and Affected Versions: Apache Airflow versions prior to 1.10.13 Description: The Charts and Query View of the old Flask-admin based UI in Apache Airflow were vulnerable to a Server-Side Request Forgery SSRF attack. Recommendations: For versions prior to 1.10.13,...
Insecure Deserialization in Query Generator & Query View
More info at https://typo3.org/security/advisory/typo3-core-sa-2019-026...
Insecure Deserialization in Query Generator & Query View
More info at https://typo3.org/security/advisory/typo3-core-sa-2019-026...
Insecure Deserialization in Query Generator & Query View
It has been discovered that classes QueryGenerator and QueryView are vulnerable to insecure deserialization...