VYPR

Airavata Django Portal

by Apache

CVEs (1)

  • CVE-2021-43410Dec 9, 2021
    risk 0.00cvss epss 0.02

    Apache Airavata Django Portal allows CRLF log injection because of lack of escaping log statements. In particular, some HTTP request parameters are logged without first being escaped. Versions affected: master branch before commit 3c5d8c7 [1] of airavata-django-portal [1]…