CVE-2021-32609
XSS vulnerability on Explore page
Apache Superset up to and including 1.1 does not sanitize titles correctly on the Explore page. This allows an attacker with Explore access to save a chart with a malicious title, injecting html (including scripts) into the page.
Affected products
Apache Software Foundation · Apache SupersetWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →