Browse Security Advisories
Security Advisories for https://github.com/apache/airflow in pypi Clear Filters
Critical
3 months ago
Apache Airflow Providers Snowflake package allows for Special Element Injection via CopyFromExternalStageToSnowflakeOperator
pypi
apache-airflow-providers-snowflake
High
6 months ago
Apache Airflow Common SQL Provider Vulnerable to SQL Injection
pypi
apache-airflow-providers-common-sql
Moderate
6 months ago
Apache Airflow MySQL Provider is Vulnerable to SQL Injection
pypi
apache-airflow-providers-mysql
Low
9 months ago
Apache Airflow Fab Provider Insufficient Session Expiration vulnerability
pypi
apache-airflow-providers-fab
High
10 months ago
Apache Airflow: Sensitive configuration values are not masked in the logs by default
pypi
airflow
Low
11 months ago
Apache Airflow vulnerable to Insertion of Sensitive Information Into Sent Data
pypi
apache-airflow
High
about 1 year ago
Apache Airflow vulnerable to Execution with Unnecessary Privileges
pypi
apache-airflow
High
about 1 year ago
Apache Airflow vulnerable to Improper Encoding or Escaping of Output
pypi
apache-airflow
Low
about 1 year ago
Apache Airflow Providers FAB Insufficient Session Expiration vulnerability
pypi
apache-airflow-providers-fab
High
about 1 year ago
Apache Airflow has DAG Author Code Execution possibility in airflow-scheduler
pypi
apache-airflow
Moderate
about 1 year ago
Apache Airflow Potential Cross-site Scripting Vulnerability
pypi
apache-airflow
Low
over 1 year ago
Apache Airflow does not return the "Cache-Control" header for dynamic content
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: XSS vulnerability in Task Instance Log/Log Details
pypi
apache-airflow
Low
over 1 year ago
Improper Certificate Validation vulnerability in Apache Airflow FTP Provider
pypi
apache-airflow-providers-ftp
Moderate
over 1 year ago
Apache Airflow: Sensitive configuration for providers displayed when "non-sensitive-only" config used
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow Improper Preservation of Permissions vulnerability
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: Incorrect Default Permissions in audit logs for Ops and Viewers users
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: DAG Code and Import Error Permissions Ignored
pypi
apache-airflow
Critical
over 1 year ago
Improper Certificate Validation in apache airflow mongo hook
pypi
apache-airflow-providers-mongo
High
over 1 year ago
Apache Airflow: Bypass permission verification to read code of other dags
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow CNCF Kubernetes provider, Apache Airflow: Kubernetes configuration file saved without encryption in the Metadata and logged as plain text in the Triggerer service
pypi
apache-airflow-providers-cncf-kubernetes, apache-airflow
High
over 1 year ago
Apache Airflow: pickle deserialization vulnerability in XComs
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow Cross-Site Request Forgery vulnerability
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow Improper Access Control vulnerability
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow has a stored cross-site scripting vulnerability
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to Exposure of Resource to Wrong Sphere
pypi
apache-airflow
High
almost 2 years ago
Apache Airflow vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow allows authenticated and DAG-view authorized users to modify some DAG run detail values when submitting notes
pypi
apache-airflow
High
almost 2 years ago
Apache Airflow Celery provider Insertion of Sensitive Information into Log File vulnerability
pypi
apache-airflow, apache-airflow-providers-celery
Moderate
almost 2 years ago
Apache Airflow vulnerable to Exposure of Sensitive Information
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to sensitive information exposure
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to sensitive information exposure when expose-config is set to non-sensitive-only
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to sensitive information exposure when users list warnings for all DAGs
pypi
apache-airflow
High
about 2 years ago
Apache HDFS Provider error message suggested
pypi
apache-airflow-providers-apache-hdfs
High
about 2 years ago
Apache Airflow vulnerable arbitrary code execution via Spark server
pypi
apache-airflow-providers-apache-spark
High
about 2 years ago
Airflow Sqoop Provider RCE Vulnerability
pypi
apache-airflow-providers-apache-sqoop
Moderate
about 2 years ago
Apache Airflow missing Certificate Validation
pypi
apache-airflow, apache-airflow-providers-imap, apache-airflow-providers-smtp
High
about 2 years ago
apache-airflow-providers-apache-drill Improper Input Validation vulnerability
pypi
apache-airflow-providers-apache-drill
Critical
about 2 years ago
Apache Airflow Hive Provider Beeline remote code execution with Principal
pypi
apache-airflow-providers-apache-hive
High
about 2 years ago
Apache Airflow ODBC Provider Argument Injection vulnerability
pypi
apache-airflow-providers-odbc
Moderate
about 2 years ago
Apache Airflow ODBC Provider, Apache Airflow MSSQL Provider Improper Input Validation vulnerability
pypi
apache-airflow-providers-microsoft-mssql, apache-airflow-providers-odbc
High
over 2 years ago
Apache Airflow vulnerable to exposure of sensitive information
pypi
apache-airflow
Critical
over 2 years ago
Apache Airflow vulnerable to Privilege Context Switching Error
pypi
apache-airflow
Moderate
over 2 years ago
Apache Airflow vulnerable to stored Cross-site Scripting
pypi
apache-airflow
High
over 2 years ago
Apache Airflow Spark Provider vulnerable to improper input validation
pypi
apache-airflow-providers-apache-spark
High
over 2 years ago
Apache Airflow Drill Provider vulnerable to improper input validation
pypi
apache-airflow-providers-apache-drill
Critical
over 2 years ago
Apache Airflow Hive Provider vulnerable to code injection
pypi
apache-airflow-providers-apache-hive
Moderate
over 2 years ago
Sensitive Information in Error Messages in Apache Airflow
pypi
apache-airflow
High
over 2 years ago
Apache Airflow AWS Provider Generates Error Message Containing Sensitive Information
pypi
apache-airflow-providers-amazon
Critical
over 2 years ago
Apache Airflow Google Provider Improper Input Validation vulnerability
pypi
apache-airflow-providers-google
High
over 2 years ago
Apache Airflow Google Provider Improper Input Validation vulnerability
pypi
apache-airflow-providers-google
Critical
over 2 years ago
Apache Airflow Hive Provider Improper Input Validation vulnerability
pypi
apache-airflow-providers-apache-hive
Critical
over 2 years ago
Apache Airflow Sqoop Provider Improper Input Validation vulnerability
pypi
apache-airflow-providers-apache-sqoop
Critical
over 2 years ago
Command Injection in Apache Airflow and Apache Airflow MySQL Provider
pypi
apache-airflow-providers-mysql, apache-airflow
Critical
almost 3 years ago
Apache Airflow Hive Provider vulnerable to Command Injection
pypi
apache-airflow-providers-apache-hive
High
almost 3 years ago
OS Command Injection in Apache Airflow
pypi
apache-airflow-providers-apache-hive
High
almost 3 years ago
Apache Airflow subject to Exposure of Sensitive Information
pypi
apache-airflow
High
almost 3 years ago
Apache Airflow vulnerable to OS Command Injection via example DAGs
pypi
apache-airflow
High
almost 3 years ago
Apache Airflow may allow authenticated users who have been deactivated to continue using the UI or API
pypi
apache-airflow
High
almost 3 years ago
Apache Airflow vulnerable to Use of Externally-Controlled Format String
pypi
apache-airflow
Critical
over 3 years ago
Missing Authentication for Critical Function in Apache Airflow
pypi
apache-airflow
Moderate
over 3 years ago
Apache Airflow Reflected Cross-site Scripting vulnerability in 404 Endpoint
pypi
apache-airflow
Moderate
over 4 years ago
Apache Airflow cross-site scripting due to incomplete fix for CVE-2020-13944
pypi
apache-airflow
Critical
about 5 years ago
Insecure default config of Celery worker in Apache Airflow
pypi
apache-airflow
Critical
about 5 years ago
Command injection via Celery broker in Apache Airflow
pypi
apache-airflow
Filter by Severity
Filter by Ecosystem
maven
6,838
packagist
5,423
pypi
4,943
npm
4,287
go
2,921
nuget
1,849
cargo
1,077
rubygems
925
hex
38
actions
37
swift
35
pub
9
Filter by Package
tensorflow
433
tensorflow-gpu
427
tensorflow-cpu
423
Django
108
apache-airflow
85
Plone
72
salt
65
ansible
63
apache-superset
61
mlflow
53
nova
48
django
46
vyper
44
gradio
44
rdiffweb
42
matrix-synapse
42
plone
41
picklescan
39
moin
35
keystone
32
opencv-contrib-python
31
opencv-python
31
pillow
28
Pillow
28
open-webui
25
vllm
25
pyload-ng
23
glance
21
aim
20
ethyca-fides
20
langchain
20
neutron
19
transformers
18
mercurial
18
cobbler
18
mindsdb
18
calibreweb
17
OctoPrint
17
cryptography
17
notebook
17
paddlepaddle
16
PaddlePaddle
16
lollms
16
aiohttp
15
modoboa
14
vantage6
14
litellm
14
mobsf
14
pyftpdlib
14
urllib3
14
zenml
13
h2o
13
roundup
13
nautobot
12
swift
12
sentry
12
pgadmin4
12
wagtail
12
twisted
12
label-studio
11
waitress
11
horizon
11
onionshare-cli
11
trytond
11
opencv-python-headless
10
pyspark
10
Flask-AppBuilder
10
opencv-contrib-python-headless
10
zope
9
agentscope
9
python-keystoneclient
9
ryu
9
cinder
9
lief
9
ckan
9
kiwitcms
9
ai.h2o:h2o-core
9
tornado
8
aubio
8
changedetection.io
8
bentoml
8
llama-index
8
numpy
8
trac
8
dbgpt
8
ipython
8
indico
8
copyparty
8
Zope
8
Zope2
8
jupyter-server
7
executorch
7
web2py
7
requests
7
matrix-sydent
7
inventree
7
scrapy
7
Products.CMFPlone
7
llama-index-core
7
pip
7
pysaml2
7
langchain-community
6
tuf
6
yt-dlp
6
whoogle-search
6
lxml
6
omero-web
6
snowflake-connector-python
6
graphite-web
6
mage-ai
6
codechecker
6
Moin
6
torchserve
6
keras
6
torch
6
apache-airflow-providers-apache-hive
6
langflow
6
dtale
6
mailman
6
Mezzanine
6
Jinja2
6
ansible-core
6
OpenEXR
6
feedparser
5
grpc
5
onnx
5
werkzeug
5
jupyterhub
5
langchain-experimental
5
ait-core
5
grpcio
5
python-gnupg
5
oauthenticator
5
mitmproxy
5
nltk
5
bleach
5
pretix
5
composio-core
5
lmdb
5
Weblate
5
keylime
5
esphome
5
saleor
5
mayan-edms
5
fschat
5
Werkzeug
5
paramiko
4
bottle
4
pytorch-lightning
4
reportlab
4
weblate
4
qutebrowser
4
homeassistant
4
pywasm3
4
httpie
4
RestrictedPython
4
starlette
4
wasmtime
4
streampipes
4
FreeTAKServer-UI
4
GitPython
4
dbt-core
4
flask
4
aws-iot-device-sdk-v2
4
indy-node
4
apache-submarine
4
MaterialX
4
Flask-Security-Too
4
Keystone
4
PyPDF2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
skops
4
buildbot
4
awsiotsdk
4
jinja2
4
xml2rfc
4
setuptools
4
barbican
4
flask-appbuilder
4
streamlit
4
Scrapy
4
koji
4
markdown2
4
InvokeAI
4
Nova
4
Pygments
4
pandasai
4
tripleo-heat-templates
4
jupyterlab
4
jwcrypto
4
ray
4
flask-cors
4
apache-iotdb
4
frappe
4
django-helpdesk
4
nvflare
4
Radicale
4
scikit-learn
3
plone.app.event
3
sosreport
3
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/django/django
117
https://github.com/apache/airflow
104
https://github.com/ansible/ansible
59
https://github.com/python-pillow/Pillow
52
https://github.com/vyperlang/vyper
44
https://github.com/ikus060/rdiffweb
42
https://github.com/saltstack/salt
42
https://github.com/mmaitre314/picklescan
39
https://github.com/openstack/nova
38
https://github.com/gradio-app/gradio
38
https://github.com/plone/Products.CMFPlone
37
https://github.com/mlflow/mlflow
35
https://github.com/matrix-org/synapse
32
https://github.com/opencv/opencv
32
https://github.com/PaddlePaddle/Paddle
31
https://github.com/openstack/keystone
28
https://github.com/langchain-ai/langchain
24
https://github.com/pyload/pyload
23
https://github.com/vllm-project/vllm
22
https://github.com/run-llama/llama_index
22
https://github.com/ethyca/fides
20
https://github.com/huggingface/transformers
18
https://github.com/vantage6/vantage6
17
https://github.com/mindsdb/mindsdb
17
https://github.com/pyca/cryptography
16
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/cobbler/cobbler
15
https://github.com/aio-libs/aiohttp
15
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/twisted/twisted
14
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/urllib3/urllib3
14
https://github.com/apache/superset
14
https://github.com/janeczku/calibre-web
14
https://github.com/modoboa/modoboa
13
https://github.com/getsentry/sentry
12
https://github.com/wagtail/wagtail
12
https://github.com/OctoPrint/OctoPrint
12
https://github.com/openstack/glance
12
https://github.com/nautobot/nautobot
12
https://github.com/zenml-io/zenml
12
https://github.com/parisneo/lollms
11
https://github.com/Pylons/waitress
11
https://github.com/scrapy/scrapy
11
https://github.com/onionshare/onionshare
11
https://github.com/jupyter/notebook
10
https://github.com/h2oai/h2o-3
10
https://github.com/HumanSignal/label-studio
10
https://github.com/WeblateOrg/weblate
9
https://github.com/aimhubio/aim
9
https://github.com/faucetsdn/ryu
9
https://github.com/giampaolo/pyftpdlib
9
https://github.com/openstack/horizon
9
https://github.com/zopefoundation/Zope
9
https://github.com/BerriAI/litellm
9
https://github.com/open-webui/open-webui
9
https://github.com/lief-project/LIEF
9
https://github.com/openstack/neutron
8
https://github.com/element-hq/synapse
8
https://github.com/octoprint/octoprint
8
https://github.com/9001/copyparty
8
https://github.com/tornadoweb/tornado
8
https://github.com/ckan/ckan
8
https://github.com/pallets/werkzeug
8
https://github.com/dgtlmoon/changedetection.io
8
https://github.com/ipython/ipython
8
https://github.com/kiwitcms/Kiwi
8
https://github.com/numpy/numpy
8
https://github.com/openstack/cinder
7
https://github.com/openstack/swift
7
https://github.com/pytorch/executorch
7
https://github.com/jupyter-server/jupyter_server
7
https://github.com/indico/indico
7
https://github.com/aubio/aubio
7
https://github.com/pallets/jinja
7
https://github.com/pytorch/pytorch
7
https://sourceforge.net/projects/sourceforge.net
7
https://github.com/lxml/lxml
6
https://github.com/graphite-project/graphite-web
6
https://github.com/Ericsson/codechecker
6
https://github.com/psf/requests
6
https://github.com/corydolphin/flask-cors
6
https://github.com/keylime/keylime
6
https://github.com/pypa/pip
6
https://github.com/snowflakedb/snowflake-connector-python
6
https://github.com/keras-team/keras
6
https://github.com/roundup-tracker/roundup
6
https://github.com/man-group/dtale
6
https://github.com/yt-dlp/yt-dlp
6
https://github.com/modelscope/agentscope
6
https://github.com/benbusby/whoogle-search
6
https://github.com/matrix-org/sydent
6
https://github.com/encode/starlette
5
https://github.com/hwchase17/langchain
5
https://github.com/py-pdf/pypdf
5
https://github.com/mozilla/bleach
5
https://github.com/mitmproxy/mitmproxy
5
https://github.com/pytorch/serve
5
https://github.com/onnx/onnx
5
https://github.com/ome/omero-web
5
https://github.com/gitpython-developers/GitPython
5
https://github.com/inventree/InvenTree
5
https://github.com/Exiv2/exiv2
5
https://github.com/ComposioHQ/composio
5
https://github.com/jupyterlab/jupyterlab
5
https://github.com/bentoml/BentoML
5
https://github.com/jupyterhub/oauthenticator
5
https://github.com/TeamSeri0us/pocs
5
https://github.com/tryton/trytond
5
https://github.com/esphome/esphome
5
https://github.com/Cog-Creators/Red-DiscordBot
4
https://github.com/jupyterhub/jupyterhub
4
https://github.com/frappe/frappe
4
https://github.com/bytecodealliance/wasmtime
4
https://github.com/home-assistant/core
4
https://github.com/ronf/asyncssh
4
https://github.com/hyperledger/indy-node
4
https://github.com/dbt-labs/dbt-core
4
https://github.com/NVIDIA/NVFlare
4
https://github.com/AcademySoftwareFoundation/openexr
4
https://github.com/ietf-tools/xml2rfc
4
https://github.com/saleor/saleor
4
https://github.com/web2py/web2py
4
https://github.com/qutebrowser/qutebrowser
4
https://github.com/django-helpdesk/django-helpdesk
4
https://github.com/bottlepy/bottle
4
https://github.com/streamlit/streamlit
4
https://github.com/langflow-ai/langflow
4
https://github.com/eosphoros-ai/DB-GPT
4
https://github.com/latchset/jwcrypto
4
https://github.com/mlc-ai/xgrammar
4
https://github.com/pallets/flask
4
https://github.com/AcademySoftwareFoundation/MaterialX
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/wasm3/wasm3
4
https://github.com/zopefoundation/RestrictedPython
4
https://github.com/rohe/pysaml2
4
https://github.com/pypa/setuptools
4
https://github.com/grpc/grpc
4
https://github.com/berriai/litellm
4
https://github.com/ray-project/ray
4
https://github.com/FreeTAKTeam/UI
4
https://github.com/pretix/pretix
4
https://github.com/nltk/nltk
4
https://github.com/Kozea/Radicale
4
https://github.com/jhpyle/docassemble
4
https://github.com/aws/sagemaker-python-sdk
3
https://github.com/Kludex/python-multipart
3
https://github.com/furlongm/openvpn-monitor
3
https://github.com/mpdavis/python-jose
3
https://github.com/ansible/ansible-runner
3
https://github.com/djblets/djblets
3
https://github.com/skops-dev/skops
3
https://github.com/Flask-Middleware/flask-security
3
https://github.com/pyca/pyopenssl
3
https://github.com/IdentityPython/pysaml2
3
https://github.com/impredicative/bitlyshortener
3
https://github.com/sosreport/sos
3
https://github.com/pyinstaller/pyinstaller
3
https://github.com/lepture/mistune
3
https://github.com/openstack/ironic
3
https://github.com/tinymce/tinymce
3
https://github.com/eventlet/eventlet
3
https://github.com/ankitects/anki
3
https://github.com/adamghill/django-unicorn
3
https://github.com/benoitc/gunicorn
3
https://github.com/OpenC3/cosmos
3
https://github.com/langroid/langroid
3
https://github.com/certifi/python-certifi
3
https://github.com/apache/submarine
3
https://github.com/openstack/octavia
3
https://github.com/pygments/pygments
3
https://github.com/moinwiki/moin-1.9
3
https://github.com/andialbrecht/sqlparse
3
https://github.com/poezio/slixmpp
3
https://github.com/jupyterhub/jupyter-server-proxy
3
https://github.com/litestar-org/litestar
3
https://github.com/openstack/python-keystoneclient
3
https://github.com/Project-MONAI/MONAI
3
https://github.com/hiyouga/LLaMA-Factory
3
https://github.com/jpadilla/pyjwt
3
https://github.com/pypa/advisory-db
3
https://github.com/DavidOsipov/PostQuantum-Feldman-VSS
3
https://github.com/micropython/micropython
3
https://github.com/dlitz/pycrypto
3
https://github.com/Gerapy/Gerapy
3
https://github.com/python/cpython
3
https://sourceforge.net/projects/roject
3
https://github.com/sqlalchemy/sqlalchemy
3
https://github.com/aws/aws-sam-cli
3
https://github.com/apache/streampipes
3
https://github.com/simonw/datasette
3
https://github.com/stephenmcd/mezzanine
3
https://github.com/github/securitylab
3
https://github.com/gventuri/pandas-ai
3
https://github.com/theupdateframework/tuf
3
https://github.com/zopefoundation/AccessControl
3
https://gitlab.com/mayan-edms/mayan-edms
3