apache-superset is vulnerable to SQL injection. The vulnerability allows an attacker to inject and execute arbitrary SQL statements using invalid column names in groupby
, columns
, filters
, or metrics
queries.
CPE | Name | Operator | Version |
---|---|---|---|
apache-superset | le | 0.37.1 |