writeups.xyz / Apache Superset Part II: RCE, Credential Harvesting and More

Submitter : c2a

Date: 6 September 2023

Bounty : undisclosed

Vulnerabilities :

• RCE
• Insecure Deserialization
• URL Validation Bypass
• Broken Authorization
• Arbitrary File Read
• Insufficiently Protected Credentials
• Default Flask Secret Key
• Hardcoded Credentials

Programs :

• Apache Superset

Authors :

• Naveen Sunkavally

Link :
https://www.horizon3.ai/apache-superset-part-ii-rce-credential-harvesting-and-more/