Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-m9q4-p56m-mc6q: Apache DolphinScheduler: RCE by arbitrary js execution

Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can cause arbitrary, unsandboxed javascript to be executed on the server. If you are using the switch task plugin, please upgrade to version 3.2.2.

ghsa
#vulnerability#apache#js#git#java#rce#auth

Apache DolphinScheduler: RCE by arbitrary js execution

High severity GitHub Reviewed Published Aug 12, 2024 to the GitHub Advisory Database • Updated Aug 12, 2024

ghsa: Latest News

GHSA-pj33-75x5-32j4: RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission