apache-airflow vulnerabilities

Programmatically author, schedule and monitor data pipelines

Latest version: 1.10.3

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the apache-airflow package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • M
Cross-site Request Forgery (CSRF)
[,1.10.3) Not available 14 Apr, 2019
  • M
Cross-site Scripting (XSS)
[,1.10.3) Not available 18 Mar, 2019
  • M
Cross-site Scripting (XSS)
[,1.10.2) Not available 28 Feb, 2019
  • H
Improper Certificate Validation
[,1.10.1) Not available 23 Jan, 2019
  • M
Information Exposure
[1.8.2, 1.9.0) Not available 23 Jan, 2019
  • M
Cross-site Scripting (XSS)
[,1.9.0) Not available 07 Aug, 2018
  • M
Cross-site Scripting (XSS)
[0,] Not available 30 Oct, 2017
  • M
Arbitrary Code Execution
[,1.9.0) Not available 07 Apr, 2017
  • M
Cross-site Scripting (XSS)
[1.6.0, 1.9.0) Not available 28 Mar, 2017
  • M
Cross-site Request Forgery (CSRF)
[,1.9.0) Not available 04 Feb, 2017