VYPR
Moderate severityNVD Advisory· Published Sep 17, 2020· Updated Aug 4, 2024

CVE-2020-13944

CVE-2020-13944

Description

In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
apache-airflowPyPI
< 1.10.121.10.12

Affected products

3

Patches

Vulnerability mechanics

References

19

News mentions

0

No linked articles in our index yet.