Lucene search
K

4 matches found

EUVD
EUVD
added 2026/02/24 1:2 p.m.5 views

EUVD-2026-8479

Apache Superset utilizes a configurable dictionary, DISALLOWEDSQLFUNCTIONS, to restrict the execution of potentially sensitive SQL functions within SQL Lab and charts. While this feature included restrictions for engines like PostgreSQL, a vulnerability was reported where the default list for the...

5.3CVSS5.8AI score0.00607EPSS
Exploits0References1
OSV
OSV
added 2025/11/12 9:15 a.m.5 views

CVE-2025-64402

Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache OpenOffice allowed an attacker to craft a document that would cause external links to be loaded without prompt. In the affected versions of Apache OpenOffice, documents that used "OLE objects" linked to...

6.5CVSS5.7AI score0.00464EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.3 views

PT-2025-33272 · Apache · Apache Superset

Name of the Vulnerable Software and Affected Versions: Apache Superset versions prior to 4.1.3 Description: A guest user accessing a chart in Apache Superset receives an API response from the /chart/data endpoint that includes a query field. This field improperly discloses database schema...

5.3CVSS6.2AI score0.00519EPSS
Exploits0References10
Snyk
Snyk
added 2022/12/22 10:20 a.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS when parsing random invalid enum strings in the EnumStringValues/EnumExtensions.cs file. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and...

7.5CVSS7.1AI score0.01283EPSS
Exploits0References2
Rows per page
Query Builder