Vulnerabilities

All ecosystems 660040 AlmaLinux 4796 Alpaquita 9618 Alpine 4143 Android 3262 Azure Linux 12016 BellSoft Hardened Containers 467 Bitnami 7875 Chainguard 6400 CleanStart 1122 CRAN 14 crates.io 2403 Debian 56265 Echo 4076 GHC 3 GIT 81590 GitHub Actions 52 Go 6966 Hackage 31 Hex 111 Julia 845 Linux 15361 Mageia 5926 Maven 6489 MinimOS 41478 npm 218832 NuGet 1707 opam 15 openEuler 6841 openSUSE 12829 OSS-Fuzz 3893 Packagist 6286 Pub 11 PyPI 19679 Red Hat 20130 Rocky Linux 3138 Root 14294 RubyGems 1963 SUSE 20561 SwiftURL 51 Ubuntu 54379 VSCode 18 Wolfi 4104

GHSA-5w6h-pjw6-wvc6

PyPI/apache-airflow-providers-keycloak

apache-airflow-providers-keycloak: Missing OAuth 2.0 State and PKCE Enables Login CSRF and Session Fixation

18 Apr

Fix available
Severity - 5.4 (Medium)