You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@airflow.apache.org by "Media Rest (JIRA)" <ji...@apache.org> on 2019/01/28 16:03:00 UTC

[jira] [Updated] (AIRFLOW-3768) XSS Vulnerability in Search Query Parameter

     [ https://issues.apache.org/jira/browse/AIRFLOW-3768?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Media Rest updated AIRFLOW-3768:
--------------------------------
    Affects Version/s: 1.10.1

> XSS Vulnerability in Search Query Parameter
> -------------------------------------------
>
>                 Key: AIRFLOW-3768
>                 URL: https://issues.apache.org/jira/browse/AIRFLOW-3768
>             Project: Apache Airflow
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 1.10.1
>            Reporter: Media Rest
>            Priority: Critical
>
> In the DAGs page, there is a XSS issue in the search parameter. The input is reflected from the search parameter back to the user.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)