EUVD-2025-178225

Malicious code in kappa-eta-theta-sandbox-user npm...

Metabase 0.43.x < 0.43.7.1 / 0.44.x < 0.44.6.1 / 0.45.x < 0.45.2.1 / 1.43.x < 1.43.7.1 / 1.44.x < 1.44.6.1 / 1.45.x < 1.45.2.1

The version of Metabase installed on the remote host is affected by multiple vulnerabilities: - An information disclosure exposure of sensitive information to an Unauthorized Actor. Sandboxed users shouldn't be able to view data about other Metabase users anywhere in the Metabase application...

Metabase 信息泄露漏洞

Metabase is an open source data analytics platform from Metabase, Inc. in the United States. An information disclosure vulnerability exists in Metabase that stems from a sandbox user being able to see field filter values from other sandbox users...

PT-2023-19088 · Metabase · Metabase

Name of the Vulnerable Software and Affected Versions: Metabase versions prior to 0.43.7.1 Metabase versions prior to 1.43.7.1 Metabase versions prior to 0.44.6.1 Metabase versions prior to 1.44.6.1 Metabase versions prior to 0.45.2.1 Metabase versions prior to 1.45.2.1 Description: Metabase is a...