Lucene search
K

4 matches found

OSV
OSV
added yesterday4 views

PYSEC-2026-1145 Apache Airflow Common SQL Provider Vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Airflow Common SQL Provider. When using the partition clause in SQLTableCheckOperator as parameter which was a recommended pattern, Authenticated UI User could inject arbitrary SQL command...

8.8CVSS6.2AI score0.00776EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/04/09 9:45 a.m.22 views

CVE-2025-30473

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Airflow Common SQL Provider. When using the partition clause in SQLTableCheckOperator as parameter which was a recommended pattern, Authenticated UI User could inject arbitrary SQL command...

8.8CVSS8.2AI score0.00776EPSS
Exploits0References1
Snyk
Snyk
added 2025/04/07 9:40 a.m.2 views

SQL Injection

Overview apache-airflow-providers-common-sql is a Provider package apache-airflow-providers-common-sql for Apache Airflow Affected versions of this package are vulnerable to SQL Injection via the partitionclause parameter in SQLTableCheckOperator. An attacker can escalate privileges and execute...

8.8CVSS8.6AI score0.00776EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/04/07 9:15 a.m.2 views

CVE-2025-30473

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Apache Airflow Common SQL Provider. When using the partition clause in SQLTableCheckOperator as parameter which was a recommended pattern, Authenticated UI User could inject arbitrary SQL command...

8.8CVSS6.1AI score0.00776EPSS
Exploits0References3
Rows per page
Query Builder