6038 matches found
PYSEC-2024-264
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue...
PYSEC-2024-264
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs.Users are recommended to upgrade to version 2.9.1, which fixes this issue...
CVE-2024-28276
Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...
CVE-2024-28276
Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...
CVE-2024-28277
In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subjectname= parameter, enabling Stored Cross-Site Scripting XSS attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloa...
CVE-2024-26517
SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...
CVE-2024-26517
SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component...
CVE-2024-32077 Apache Airflow: XSS vulnerability in Task Instance Log/Log Details
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue...
CVE-2024-32077
CVE-2024-32077 concerns Apache Airflow 2.9.0 with a cross-site scripting (XSS) vulnerability in Task Instance Log/Log Details. An authenticated attacker can inject malicious data into task instance logs due to insufficient input handling, leading to XSS when logs are viewed. The affected product ...
CVE-2024-32077 Apache Airflow: XSS vulnerability in Task Instance Log/Log Details
Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs. Users are recommended to upgrade to version 2.9.1, which fixes this issue...
School Task Manager Security Vulnerability
School Task Manager is a school task manager by rems individual developer. A security vulnerability exists in Sourcecodester School Task Manager version 1.0, which is vulnerable to cross-site scripting XSS attacks...
PT-2024-24381 · Apache · Apache Airflow
Name of the Vulnerable Software and Affected Versions: Apache Airflow version 2.9.0 Description: The issue allows an authenticated attacker to inject malicious data into the task instance logs. This is a critical security vulnerability that enables attackers to inject data into the task instance...
School Task Manager Security Vulnerability
School Task Manager is a school task manager by rems individual developer. A security vulnerability exists in Sourcecodester School Task Manager version 1.0 that stems from the presence of a stored cross-site scripting XSS attack that results in the execution of a malicious JavaScript payload...
School Task Manager Security Vulnerability
School Task Manager is a school task manager by rems individual developer. A security vulnerability exists in School Task Manager version 1.0, which stems from a SQL injection vulnerability that allows remote attackers to obtain sensitive information from the delete-task.php component via a craft...
Microsoft Windows Task Scheduler 后置链接漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A backlink vulnerability exists in Microsoft Windows Task Scheduler. The following products and versions are affected:Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 fo...
KLA67433 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote cod...
CVE-2024-28276
Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...
CVE-2024-28276
Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting XSS via add-task.php?taskname=...
CVE-2024-28276
Sourcecodester School Task Manager 1.0 is affected by a Cross-Site Scripting (XSS) flaw exploitable via add-task.php?task_name=. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE/CVEList, CVE enrichment feeds) with the same root cause: unsanitized input in the task_name p...
CVE-2024-28277
In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subjectname= parameter, enabling Stored Cross-Site Scripting XSS attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of malicious JavaScript payloa...