VulnerableCode Package Details - pkg:pypi/apache-dolphinscheduler@0.1.1

Search for packages

Vulnerability	Summary	Fixed by
VCID-9nf3-ytdq-hfcu Aliases: CVE-2022-45875 GHSA-3xh5-8hvq-rc8x PYSEC-2023-4	Improper validation of script alert plugin parameters in Apache DolphinScheduler to avoid remote command execution vulnerability. This issue affects Apache DolphinScheduler version 3.0.1 and prior versions; version 3.1.0 and prior versions.	3.0.2 Affected by 0 other vulnerabilities.
VCID-yc2s-jxa6-8ua9 Aliases: CVE-2022-25598 GHSA-qg5x-66hp-cw5p PYSEC-2022-176	Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.	2.0.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-9nf3-ytdq-hfcu
Aliases:
CVE-2022-45875
GHSA-3xh5-8hvq-rc8x
PYSEC-2023-4

Improper validation of script alert plugin parameters in Apache DolphinScheduler to avoid remote command execution vulnerability. This issue affects Apache DolphinScheduler version 3.0.1 and prior versions; version 3.1.0 and prior versions.

3.0.2
Affected by 0 other vulnerabilities.

VCID-yc2s-jxa6-8ua9
Aliases:
CVE-2022-25598
GHSA-qg5x-66hp-cw5p
PYSEC-2022-176

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

2.0.5
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-06T01:39:00.027095+00:00	GitLab Importer	Affected by	VCID-yc2s-jxa6-8ua9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/apache-dolphinscheduler/CVE-2022-25598.yml	38.6.0
2026-06-05T17:02:26.065875+00:00	PyPI Importer	Affected by	VCID-9nf3-ytdq-hfcu	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-05T17:01:59.440469+00:00	PyPI Importer	Affected by	VCID-yc2s-jxa6-8ua9	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-06-05T16:40:11.116155+00:00	GHSA Importer	Affected by	VCID-yc2s-jxa6-8ua9	https://github.com/advisories/GHSA-qg5x-66hp-cw5p	38.6.0
2026-06-02T04:18:12.925921+00:00	Pypa Importer	Affected by	VCID-9nf3-ytdq-hfcu	https://github.com/pypa/advisory-database/blob/main/vulns/apache-dolphinscheduler/PYSEC-2023-4.yaml	38.6.0
2026-06-02T04:17:16.055595+00:00	Pypa Importer	Affected by	VCID-yc2s-jxa6-8ua9	https://github.com/pypa/advisory-database/blob/main/vulns/apache-dolphinscheduler/PYSEC-2022-176.yaml	38.6.0