Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-fcg4-pm6h-9xx2: Apache Superset Open Redirect vulnerability

An authenticated attacker with update datasets permission could change a dataset link to an untrusted site, users could be redirected to this site when clicking on that specific dataset. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0.

ghsa
Open in Source
#vulnerability#apache#git#auth

Apache Superset Open Redirect vulnerability

Moderate severity GitHub Reviewed Published Jan 16, 2023 • Updated Jan 20, 2023

Related news

CVE-2022-43721

An authenticated attacker with update datasets permission could change a dataset link to an untrusted site, users could be redirected to this site when clicking on that specific dataset. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0.

ghsa: Latest News

GHSA-mj5r-x73q-fjw6: SPEmailHandler-PHP has Potential Abuse for Sending Arbitrary Emails
ghsa