Lucene search
Veracode Vulnerability DatabaseVERACODE:29588HistoryMar 08, 2021 - 2:35 a.m.
Cross-Site Scripting (XSS)
2021-03-0802:35:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
apache superset
cross-site scripting
vulnerability
javascript code
browser
div section
svg element
software
EPSS
0.001
Percentile
47.8%
apache superset is vulnerable to cross-site scripting (XSS). An attacker is able to inject and execute arbitrary Javascript code in a user’s browser by creating a div section embedded with a malicious svg element.
Related
cve
cve
CVE-2021-27907
2021-03-05 12:15:12
cvelist
cvelist
CVE-2021-27907 Apache Superset stored XSS on Dashboard markdown
2021-03-05 11:35:15
osv
osv
PYSEC-2021-127
2021-03-05 12:15:00
CVE-2021-27907
2021-03-05 12:15:12
Apache Superset Stored XSS on Dashboard markdown
2022-05-24 22:29:00
nvd
nvd
CVE-2021-27907
2021-03-05 12:15:12
prion
prion
Cross site scripting
2021-03-05 12:15:00
github
github
Apache Superset Stored XSS on Dashboard markdown
2022-05-24 22:29:00