2020-09-17 14:01:40
apache
PUBLISHED
In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like /trigger was vulnerable to XSS exploit.