writeups.xyz / Apache Superset

Title	Vulnerabilities	Programs	Authors
Apache Superset Part II: RCE, Credential Harvesting and More	RCE Insecure Deserialization URL Validation Bypass Broken Authorization Arbitrary File Read Insufficiently Protected Credentials Default Flask Secret Key Hardcoded Credentials	Apache Superset	Naveen Sunkavally
CVE-2023-27524: Insecure Default Configuration in Apache Superset Leads to Remote Code Execution	RCE Default Flask Secret Key Hardcoded Credentials	Apache Superset	Naveen Sunkavally

Page 1 of 1