Количество 3
Количество 3
CVE-2017-12614
It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS attack. Chrome will detect this as a reflected XSS attempt and prevent the page from loading. Firefox and other browsers don't, and are vulnerable to this attack. Mitigation: The fix for this is to upgrade to Apache Airflow 1.9.0 or above.
CVE-2017-12614
It was noticed an XSS in certain 404 pages that could be exploited to ...
GHSA-rv25-9wgj-xg75
Apache Airflow Reflected Cross-site Scripting vulnerability in 404 Endpoint
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-12614 It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS attack. Chrome will detect this as a reflected XSS attempt and prevent the page from loading. Firefox and other browsers don't, and are vulnerable to this attack. Mitigation: The fix for this is to upgrade to Apache Airflow 1.9.0 or above. | CVSS3: 6.1 | 2% Низкий | больше 7 лет назад |
| CVE-2017-12614 It was noticed an XSS in certain 404 pages that could be exploited to ... | CVSS3: 6.1 | 2% Низкий | больше 7 лет назад |
| GHSA-rv25-9wgj-xg75 Apache Airflow Reflected Cross-site Scripting vulnerability in 404 Endpoint | CVSS3: 6.1 | 2% Низкий | больше 3 лет назад |
Уязвимостей на страницу