3 matches found
CVE-2026-35565 Apache Storm UI: Stored Cross-Site Scripting (XSS) via Unsanitized Topology Metadata in Storm UI
Stored Cross-Site Scripting XSS via Unsanitized Topology Metadata in Apache Storm UI Versions Affected: before 2.8.6 Description: The Storm UI visualization component interpolates topology metadata including component IDs, stream names, and grouping values directly into HTML via innerHTML in...
B&R Industrial Automation Process Visualization Interface log information leakage vulnerability
B&R Industrial Automation Process Visualization Interface is a process visualization tool developed by B&R Industrial Automation in Austria. Versions of the B&R Industrial Automation Process Visualization Interface prior to version 6.5 contained a vulnerability related to log information leakage...
The vulnerability of the application software interface for data visualization software Apache Superset allows a hacker to probe connections with the database.
The vulnerability of the application software interface for data visualization in Apache Superset is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows a malicious actor to remotely check database connections...