org.apache.atlas:apache-atlas@0.6-incubating vulnerabilities
-
latest version
2.3.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
a year ago
-
licenses detected
- [0.5-incubating,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.atlas:apache-atlas package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.atlas:apache-atlas is a Data Governance and Metadata framework for Hadoop Affected versions of this package are vulnerable to Cross-site Scripting (XSS). While saving search or rendering elements values are not sanitized correctly. How to fix Cross-site Scripting (XSS)? Upgrade |
[,2.1.0)
|
org.apache.atlas:apache-atlas is a Data Governance and Metadata framework for Hadoop Affected versions of this package are vulnerable to Cross-site Scripting (XSS). Unknown components within Apache Atlas are vulnerable to Stored Cross-Site Scripting which can be exploited through the search functionality. How to fix Cross-site Scripting (XSS)? Upgrade |
[,0.8.4)
[1.0.0,1.2.0)
|
Affected versions of the package are vulnerable to Cross-Frame Scripting (XSS). How to fix Cross-site Scripting (XSS)? Upgrade |
[,0.7.1-incubating)
|
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included stack trace, exposing excessive information. How to fix Information Exposure? Upgrade |
[,0.7.1-incubating)
|
Affected versions of the package are vulnerable to Reflected Cross-site Scripting (XSS) via the search functionality. How to fix Cross-site Scripting (XSS)? Upgrade |
[,0.7.1-incubating)
|
Affected versions of the package are vulnerable to DOM Cross-site Scripting (XSS) via the edit-tag functionality. How to fix Cross-site Scripting (XSS)? Upgrade |
[,0.7.1-incubating)
|
Affected versions of the package are vulnerable to Stored Cross-site Scripting (XSS) via the edit-tag functionality. How to fix Cross-site Scripting (XSS)? Upgrade |
[,0.7.1-incubating)
|
Affected versions of the package are vulnerable to Use of Insecure Cookies, that could be accessible to client-side script. How to fix Use of Insecure Cookies? Upgrade |
[,0.7.1-incubating)
|