VYPR

apk package

wolfi/superset-ci

pkg:apk/wolfi/superset-ci

Vulnerabilities (22)

  • CVE-2024-34069May 6, 2024
    affected < 4.0.1-r0fixed 4.0.1-r0

    Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute code on a developer's machine under some circumstances. This requires the attacker to get the developer to interact with a domain and subdomain

  • CVE-2024-34064May 6, 2024
    affected < 4.0.1-r0fixed 4.0.1-r0

    Jinja is an extensible templating engine. The `xmlattr` filter in affected versions of Jinja accepts keys containing non-attribute characters. XML/HTML attributes cannot contain spaces, `/`, `>`, or `=`, as each would then be interpreted as starting a separate attribute. If an ap

Page 2 of 2