Vulnerabilidades en kestra-io
5 resultadosCVE-2026-34612CRITICALKestra: Remote Code Execution via SQL InjectionEPSS 0.7%CVE-2026-48129MEDIUMKestra task inputFiles accepts traversal filenames for worker file writesEPSS 0.3%CVE-2026-33664HIGHKestra Vulnerable to Stored Cross-Site Scripting via Flow YAML FieldsEPSS 0.3%CVE-2026-29082HIGHKestra: Stored Cross-Site Scripting in Markdown File PreviewEPSS 0.2%CVE-2025-53543MEDIUMKestra allows Stored XSS before 0.22EPSS 0.2%