CVE-2024-41937: Apache Airflow: Stored XSS Vulnerability on provider link Internet Bug Bounty disclosed a bug submitted by sw0rd1ight: https://hackerone.com/reports/2677187 - Bounty: $497 [Source]