Lucene search
K

6038 matches found

OSV
OSV
added 2024/05/14 4:17 p.m.9 views

PYSEC-2024-264

Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue...

5.4CVSS6AI score0.01559EPSS
Exploits0References4
PyPA
PyPA
added 2024/05/14 4:17 p.m.8 views

PYSEC-2024-264

Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs.Users are recommended to upgrade to version 2.9.1, which fixes this issue...

5.4CVSS6AI score0.01559EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/05/14 3:14 p.m.11 views

CVE-2024-28276

Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...

6.1CVSS5.8AI score0.00286EPSS
Exploits0References2
OSV
OSV
added 2024/05/14 3:14 p.m.5 views

CVE-2024-28276

Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...

6.1CVSS5.8AI score0.00286EPSS
Exploits0References2
OSV
OSV
added 2024/05/14 3:14 p.m.6 views

CVE-2024-28277

In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subjectname= parameter, enabling Stored Cross-Site Scripting XSS attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloa...

6.1CVSS5.9AI score0.00362EPSS
Exploits0References2
NVD
NVD
added 2024/05/14 3:9 p.m.11 views

CVE-2024-26517

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...

9.1CVSS7.1AI score0.00802EPSS
Exploits0References2
OSV
OSV
added 2024/05/14 3:9 p.m.4 views

CVE-2024-26517

SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...

9.1CVSS5.9AI score0.00802EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/14 10:43 a.m.20 views

CVE-2024-32077 Apache Airflow: XSS vulnerability in Task Instance Log/Log Details

Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue...

5.2AI score0.01559EPSS
Exploits0References3
CVE
CVE
added 2024/05/14 10:43 a.m.77 views

CVE-2024-32077

CVE-2024-32077 concerns Apache Airflow 2.9.0 with a cross-site scripting (XSS) vulnerability in Task Instance Log/Log Details. An authenticated attacker can inject malicious data into task instance logs due to insufficient input handling, leading to XSS when logs are viewed. The affected product ...

5.4CVSS5.2AI score0.01559EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/05/14 10:43 a.m.29 views

CVE-2024-32077 Apache Airflow: XSS vulnerability in Task Instance Log/Log Details

Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue...

6.5AI score0.01559EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.5 views

School Task Manager Security Vulnerability

School Task Manager is a school task manager by rems individual developer. A security vulnerability exists in Sourcecodester School Task Manager version 1.0, which is vulnerable to cross-site scripting XSS attacks...

6.1CVSS5.9AI score0.00286EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.5 views

PT-2024-24381 · Apache · Apache Airflow

Name of the Vulnerable Software and Affected Versions: Apache Airflow version 2.9.0 Description: The issue allows an authenticated attacker to inject malicious data into the task instance logs. This is a critical security vulnerability that enables attackers to inject data into the task instance...

5.4CVSS7.1AI score0.01559EPSS
Exploits0References11
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.6 views

School Task Manager Security Vulnerability

School Task Manager is a school task manager by rems individual developer. A security vulnerability exists in Sourcecodester School Task Manager version 1.0 that stems from the presence of a stored cross-site scripting XSS attack that results in the execution of a malicious JavaScript payload...

6.1CVSS5.9AI score0.00362EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.4 views

School Task Manager Security Vulnerability

School Task Manager is a school task manager by rems individual developer. A security vulnerability exists in School Task Manager version 1.0, which stems from a SQL injection vulnerability that allows remote attackers to obtain sensitive information from the delete-task.php component via a craft...

9.1CVSS7.5AI score0.00802EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.4 views

Microsoft Windows Task Scheduler 后置链接漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A backlink vulnerability exists in Microsoft Windows Task Scheduler. The following products and versions are affected:Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 fo...

7.8CVSS6.4AI score0.0073EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2024/05/14 12:0 a.m.71 views

KLA67433 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote cod...

8.8CVSS10AI score0.11471EPSS
Exploits4References64
Cvelist
Cvelist
added 2024/05/13 7:57 p.m.27 views

CVE-2024-28276

Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...

6AI score0.00286EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/13 7:57 p.m.16 views

CVE-2024-28276

Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...

6.2AI score0.00286EPSS
Exploits0References2
CVE
CVE
added 2024/05/13 7:57 p.m.89 views

CVE-2024-28276

Sourcecodester School Task Manager 1.0 is affected by a Cross-Site Scripting (XSS) flaw exploitable via add-task.php?task_name=. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE/CVEList, CVE enrichment feeds) with the same root cause: unsanitized input in the task_name p...

6.1CVSS6AI score0.00286EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/13 7:51 p.m.31 views

CVE-2024-28277

In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subjectname= parameter, enabling Stored Cross-Site Scripting XSS attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloa...

5.7AI score0.00362EPSS
Exploits0References2
Rows per page
Query Builder