|
641
|
7.3 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. Performing a manipulation…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10250
|
2026-06-1 22:14 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
642
|
- |
|
-
|
-
|
It was identified that the LDAP client implementation in version 2.1.7 does not verify if the server certificate matches the intended LDAP
hostname. While the underlying code validates the certifica…
New
|
CWE-297
Improper Validation of Certificate with Host Mismatch
|
CVE-2026-35563
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
643
|
- |
|
-
|
-
|
A Dag author could either (a) create a symlink under their task's log directory pointing to an arbitrary file readable by the API server process (read-path attack — e.g. `/etc/passwd` or `airflow.cfg…
New
|
CWE-59
Link Following
|
CVE-2026-40861
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
644
|
- |
|
-
|
-
|
A bug in the login redirect route in Apache Airflow allowed authenticated users to craft URLs that bypassed the `is_safe_url` check, enabling redirection from a trusted Airflow domain to an attacker-…
New
|
CWE-601
Open Redirect
|
CVE-2026-40961
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
645
|
- |
|
-
|
-
|
The partitioned_dag_runs endpoints in the Airflow UI enforced only asset-level access control, not per-Dag authorization. An authenticated UI/API user with global Asset:read permission could enumerat…
New
|
CWE-862
Missing Authorization
|
CVE-2026-41014
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
646
|
- |
|
-
|
-
|
A bug in Apache Airflow's bulk Task Instances API (`PATCH/DELETE /api/v2/dags/{dag_id}/dagRuns/{dag_run_id}/taskInstances`) evaluated authorization against the `dag_id` resolved from the URL path whi…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-41084
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
647
|
- |
|
-
|
-
|
Apache Airflow's official documentation at `core-concepts/dag-run.html` ("Passing Parameters when triggering Dags") showed a verbatim `BashOperator(bash_command="echo value: {{ dag_run.conf['conf1'] …
New
|
CWE-1336
Improper Neutralization of Special Elements Used in a Template Engine
|
CVE-2026-42252
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
648
|
- |
|
-
|
-
|
Apache Airflow's scheduler-side deadline-reference decoder (`SerializedCustomReference.deserialize_reference`) imported and dispatched arbitrary class paths drawn from DAG-author-controlled serialize…
New
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-45360
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
649
|
- |
|
-
|
-
|
A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the logout flow for `FabAuthManager` and `KeycloakAuthManager` …
New
|
CWE-613
Insufficient Session Expiration
|
CVE-2026-48726
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
650
|
- |
|
-
|
-
|
Apache Airflow's EmailOperator and the underlying `airflow.utils.email` helpers established SMTP STARTTLS connections without verifying the remote certificate when the deployment used `[email] smtp_s…
New
|
CWE-295
Improper Certificate Validation
|
CVE-2026-49267
|
2026-06-1 22:13 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
