
apache-airflow
Programmatically author, schedule and monitor data pipelines
Security Advisories for apache-airflow in pypi
Moderate
8 days ago
Apache Airflow: Connection sensitive details exposed to users with READ permissions
pypi
apache-airflow
Low
11 months ago
Apache Airflow vulnerable to Insertion of Sensitive Information Into Sent Data
pypi
apache-airflow
High
about 1 year ago
Apache Airflow vulnerable to Improper Encoding or Escaping of Output
pypi
apache-airflow
High
about 1 year ago
Apache Airflow vulnerable to Execution with Unnecessary Privileges
pypi
apache-airflow
High
about 1 year ago
Apache Airflow has DAG Author Code Execution possibility in airflow-scheduler
pypi
apache-airflow
Moderate
about 1 year ago
Apache Airflow Potential Cross-site Scripting Vulnerability
pypi
apache-airflow
Low
over 1 year ago
Apache Airflow does not return the "Cache-Control" header for dynamic content
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: XSS vulnerability in Task Instance Log/Log Details
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: Sensitive configuration for providers displayed when "non-sensitive-only" config used
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow Improper Preservation of Permissions vulnerability
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: Incorrect Default Permissions in audit logs for Ops and Viewers users
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow: DAG Code and Import Error Permissions Ignored
pypi
apache-airflow
Moderate
over 1 year ago
Apache Airflow CNCF Kubernetes provider, Apache Airflow: Kubernetes configuration file saved without encryption in the Metadata and logged as plain text in the Triggerer service
pypi
apache-airflow-providers-cncf-kubernetes, apache-airflow
High
over 1 year ago
Apache Airflow: pickle deserialization vulnerability in XComs
pypi
apache-airflow
High
over 1 year ago
Apache Airflow: Bypass permission verification to read code of other dags
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow Improper Access Control vulnerability
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow Cross-Site Request Forgery vulnerability
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow has a stored cross-site scripting vulnerability
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to Exposure of Resource to Wrong Sphere
pypi
apache-airflow
High
almost 2 years ago
Apache Airflow vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow allows authenticated and DAG-view authorized users to modify some DAG run detail values when submitting notes
pypi
apache-airflow
High
almost 2 years ago
Apache Airflow Celery provider Insertion of Sensitive Information into Log File vulnerability
pypi
apache-airflow, apache-airflow-providers-celery
Moderate
almost 2 years ago
Apache Airflow vulnerable to Exposure of Sensitive Information
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to sensitive information exposure when users list warnings for all DAGs
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to sensitive information exposure when expose-config is set to non-sensitive-only
pypi
apache-airflow
Moderate
almost 2 years ago
Apache Airflow vulnerable to sensitive information exposure
pypi
apache-airflow
Moderate
about 2 years ago
Apache Airflow missing Certificate Validation
pypi
apache-airflow, apache-airflow-providers-imap, apache-airflow-providers-smtp
High
over 2 years ago
Apache Airflow vulnerable to exposure of sensitive information
pypi
apache-airflow
Critical
over 2 years ago
Apache Airflow vulnerable to Privilege Context Switching Error
pypi
apache-airflow
Moderate
over 2 years ago
Apache Airflow vulnerable to stored Cross-site Scripting
pypi
apache-airflow
Moderate
over 2 years ago
Sensitive Information in Error Messages in Apache Airflow
pypi
apache-airflow
Critical
over 2 years ago
Command Injection in Apache Airflow and Apache Airflow MySQL Provider
pypi
apache-airflow-providers-mysql, apache-airflow
High
almost 3 years ago
Apache Airflow vulnerable to OS Command Injection via example DAGs
pypi
apache-airflow
High
almost 3 years ago
Apache Airflow subject to Exposure of Sensitive Information
pypi
apache-airflow
High
almost 3 years ago
Apache Airflow may allow authenticated users who have been deactivated to continue using the UI or API
pypi
apache-airflow
High
about 3 years ago
Apache Airflow vulnerable to Use of Externally-Controlled Format String
pypi
apache-airflow
Critical
over 3 years ago
Missing Authentication for Critical Function in Apache Airflow
pypi
apache-airflow
Moderate
over 3 years ago
Apache Airflow Reflected Cross-site Scripting vulnerability in 404 Endpoint
pypi
apache-airflow
Moderate
over 4 years ago
Apache Airflow cross-site scripting due to incomplete fix for CVE-2020-13944
pypi
apache-airflow
Critical
about 5 years ago
Command injection via Celery broker in Apache Airflow
pypi
apache-airflow
Critical
about 5 years ago
Insecure default config of Celery worker in Apache Airflow
pypi
apache-airflow
Moderate
about 5 years ago
Multiple stored XSS in RBAC Admin screens in Apache Airflow
pypi
apache-airflow
High
over 6 years ago
Improper Input Validation in Apache Airflow resulting in Remote Code Execution
pypi
apache-airflow