CVE-2023-27524 - Session Validation Attacks in Apache Superset: How They Work, How to Patch, and Protecting Your Data
The open-source data visualization and business intelligence tool, Apache Superset, is affected by a vulnerability identified as CVE-2023-27524. This vulnerability allows attackers to authenticate and
CVE-2023-25504 - Apache Superset Import Dataset Vulnerability Allowing SSRF Attacks by Authenticated Attackers
A newly discovered vulnerability (CVE-2023-25504) in Apache Superset enables an attacker to conduct Server-Side Request Forgery (SSRF) attacks once they have been authenticated and provided