org.apache.dolphinscheduler:dolphinscheduler-dao@2.0.0-alpha vulnerabilities
-
latest version
3.2.1
-
latest non vulnerable version
-
first published
4 years ago
-
latest version published
3 months ago
-
licenses detected
- [1.2.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.dolphinscheduler:dolphinscheduler-dao package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.dolphinscheduler:dolphinscheduler-dao is an A visual DAG workflow scheduling system, dedicated to solving the complex dependencies in data processing. Affected versions of this package are vulnerable to Session Fixation. An attacker can hijack a user session by exploiting the fact that a session remains valid even after the user's password has been changed. How to fix Session Fixation? Upgrade |
[,3.2.1)
|