Hi Airflow community, Please find below the information about vulnerability which has been addressed in Apache Airflow v1.10.12:
*CVE-2020-13944 - Reflected XSS via Origin Parameter* The "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. Reported by Ali Al-Habsi of Accellion & Everardo Padilla Saca Thanks. Kaxil @ Airflow PMC
