3 matches found
CVE-2022-43717
Dashboard rendering does not sufficiently sanitize the content of markdown components leading to possible XSS attack vectors that can be performed by authenticated users with create dashboard permissions. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0...
CVE-2022-43717
CVE-2022-43717 affects Apache Superset: dashboard rendering does not sufficiently sanitize Markdown content, enabling possible XSS by authenticated users with create dashboard permissions. Documented impact covers Superset versions 1.5.2 and earlier, and 2.0.0 (per CVE sources and related advisor...
CVE-2022-43717 Apache Superset: Cross-Site Scripting on dashboards
Dashboard rendering does not sufficiently sanitize the content of markdown components leading to possible XSS attack vectors that can be performed by authenticated users with create dashboard permissions. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0...