org.apache.druid:druid Security Advisories - Maven | Ecosyste.ms: Advisories

org.apache.druid:druid

Druid - A Distributed Column Store

View on github.com · View on repo1.maven.org

Security Advisories for org.apache.druid:druid in maven

Critical

about 16 hours ago

Apache Druid’s Kerberos authenticator uses a weak fallback secret GSA_kwCzR0hTQS13ODhmLTQ4NzUtOTljOM4ABO_v

maven org.apache.druid:druid

Moderate

8 months ago

Apache Druid vulnerable to Server-Side Request Forgery, Cross-site Scripting, Open Redirect GSA_kwCzR0hTQS0yeGNyLXA3NjctZjNyds4ABFv6

maven org.apache.druid:druid

Low

about 1 year ago

Apache Druid: Users can provide MySQL JDBC properties not on allow list GSA_kwCzR0hTQS1qaDY2LTM1NDUtdnBtN84AA_nI

maven org.apache.druid:druid

Moderate

over 3 years ago

Apache Druid before 0.23.0 vulnerable to clickjacking GSA_kwCzR0hTQS1wZ3E3LWpjajUteHg2aM4AAtJY

maven org.apache.druid:druid

Moderate

over 3 years ago

Apache Druid before 0.23.0 vulnerable to reflected XSS via unescaped URL parameters GSA_kwCzR0hTQS04cm12LTk4bTQtZzVjNs4AAtJZ

maven org.apache.druid:druid

Moderate

almost 4 years ago

Credentials bypass in Apache Druid MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFoMmctN2g1cC1teGY0

maven org.apache.druid:druid

High

over 4 years ago

Arbitrary code execution in Apache Druid MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqNGYtcDd2di1qNHY5

maven org.apache.druid:druid

High

over 4 years ago

Code injection in Apache Druid MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdycWYtcnJydy13M21n

maven org.apache.druid:druid

Filter by Severity

Moderate 4 High 2 Low 1 Critical 1