Lucene search
ApacheCVELIST:CVE-2023-29247HistoryMay 08, 2023 - 9:01 a.m.
CVE-2023-29247 Stored XSS on Apache Airflow
2023-05-0809:01:40
CWE-79
apache
www.cve.org
cve-2023-29247
stored xss
apache airflow
task instance vulnerability
0.001 Low
EPSS
Percentile
41.6%
Task instance details page in the UI is vulnerable to a stored XSS.This issue affects Apache Airflow: before 2.6.0.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Airflow",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "2.6.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
osv
osv
Apache Airflow vulnerable to stored Cross-site Scripting
2023-05-08 12:30:28
BIT-airflow-2023-29247
2024-03-06 10:54:51
CVE-2023-29247
2023-05-08 10:15:09
nvd
nvd
CVE-2023-29247
2023-05-08 10:15:09
veracode
veracode
Stored Cross-Site Scripting (XSS)
2023-05-10 00:28:30
cnvd
cnvd
Apache Airflow Cross-Site Scripting Vulnerability (CNVD-2023-52700)
2023-05-10 00:00:00
cve
cve
CVE-2023-29247
2023-05-08 10:15:09
prion
prion
Design/Logic Flaw
2023-05-08 10:15:00
github
github
Apache Airflow vulnerable to stored Cross-site Scripting
2023-05-08 12:30:28