CVE-2014-5329 - Hidden DoS Risk in GIGAPOD’s 8001/tcp Admin Interface
GIGAPOD file servers, used for sharing and storing data, are popular in business environments. Their design separates user access (web portals on ports 80 and
CVE-2023-41938 - How a CSRF Vulnerability Could Let Attackers Delete Your Disabled Jenkins Ivy Modules
If you are using Jenkins to automate builds and deployments, you may have heard about its huge plugin ecosystem. One of the popular plugins is
CVE-2023-39264 - Apache Superset Stack Trace Exposure in REST API (Up to 2.1.) – Exploit Details and Security Insights
Date: June 2024
Author: [Exclusive Post for Your Eyes Only]
Apache Superset is one of the most popular open-source data exploration and visualization platforms in
CVE-2023-36387 - How Improper Default REST API Permissions in Apache Superset Expose Sensitive Database Operations
---
Introduction
In June 2023, a significant security issue was disclosed in Apache Superset—an open-source data visualization and exploration platform. The vulnerability, identified as
CVE-2023-36388 - How Improper REST API Permission in Apache Superset (≤ 2.1.) Can Lead to SSRF for Authenticated Gamma Users
Apache Superset is a popular open-source data visualization platform, used by businesses and data teams everywhere. But even the best tools sometimes have dangerous flaws.
Episode
00:00:00
00:00:00