CVE-2024-24772 - Guest User SQL Injection & Info Leak in Apache Superset (Full Walkthrough & Exploit)
CVE-2024-24772 is a security vulnerability impacting Apache Superset, a popular data visualization platform used by organizations worldwide. This post will break down the issue in
CVE-2024-24779 - How Apache Superset’s Custom Roles Could Leak Your Confidential Data
A recent security vulnerability, CVE-2024-24779, was discovered in Apache Superset affecting versions before 3..4 and 3.1. before 3.1.1. This flaw lets
CVE-2024-26016 - How Low Privileged Users Could Hijack Dashboards in Apache Superset (Full Breakdown)
Apache Superset is a popular open-source platform for data exploration and dashboarding at scale. In February 2024, a security vulnerability was identified and assigned CVE-2024-26016.
CVE-2024-24773 - Bypassing Data Authorization in Apache Superset via Nested SQL Injection
Recently, a critical vulnerability — CVE-2024-24773 — was discovered in Apache Superset, a popular open-source data exploration and visualization platform. This flaw affects the handling of nested
CVE-2023-36388 - How Improper REST API Permission in Apache Superset (≤ 2.1.) Can Lead to SSRF for Authenticated Gamma Users
Apache Superset is a popular open-source data visualization platform, used by businesses and data teams everywhere. But even the best tools sometimes have dangerous flaws.
Episode
00:00:00
00:00:00