A cross-site scripting vulnerability exists in Apache Superset, a data visualization and data exploration platform from the Apache Foundation. The vulnerability stems from a failure of the upload data form to properly render user input, which could be exploited by an attacker to cause a cross-site scripting attack.
CPE | Name | Operator | Version |
---|---|---|---|
apache superset | le | 1.5.2 | |
apache superset | eq | 2.0.0 |