CVE-2023-27523

Improper data authorization check on Jinja templated queries in Apache Superset up to and including 2.1.0 allows for an authenticated user to issue queries on database tables they may not have access to...

The vulnerability of the BARS.Web-Swods platform arises from insufficient validation of input data, allowing attackers to execute unauthorized SQL queries against the database of the information system.

The vulnerability of the BARS.Web-Swods platform arises from insufficient validation of input data when accessing the form located at the address /Forms/Open?metaName=. Exploitation of this vulnerability allows a malicious actor to execute unauthorized SQL queries against the database of the...