Lucene search
ApacheCVELIST:CVE-2020-11983HistoryJul 16, 2020 - 11:21 p.m.
CVE-2020-11983
2020-07-1623:21:30
apache
www.cve.org
An issue was found in Apache Airflow versions 1.10.10 and below. It was discovered that many of the admin management screens in the new/RBAC UI handled escaping incorrectly, allowing authenticated users with appropriate permissions to create stored XSS attacks.
CNA Affected
[
{
"product": "Apache Airflow",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "1.10.10 and below"
}
]
}
]Related
osv
osv
Multiple stored XSS in RBAC Admin screens in Apache Airflow
2020-07-27 16:57:25
BIT-airflow-2020-11983
2024-03-06 11:01:07
PYSEC-2020-17
2020-07-17 00:15:00
cve
cve
CVE-2020-11983
2020-07-17 00:15:10
nvd
nvd
CVE-2020-11983
2020-07-17 00:15:10
github
github
Multiple stored XSS in RBAC Admin screens in Apache Airflow
2020-07-27 16:57:25
prion
prion
Cross site scripting
2020-07-17 00:15:00
nessus
nessus
Apache Airflow < 1.10.11 Multiple Vulnerabilities
2022-06-13 00:00:00