Apache Superset before 1.4.2 is vulnerable to SQL injection in chart data requests. Users should update to 1.4.2 or higher which addresses this issue.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2022-04-13T19:05:11

Updated: 2024-08-03T05:25:32.815Z

Reserved: 2022-03-21T00:00:00

Link: CVE-2022-27479

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-04-13T19:15:09.303

Modified: 2024-11-21T06:55:48.337

Link: CVE-2022-27479

cve-icon Redhat

No data.