Source |
CVE Liste |
Identifiant |
8301522 |
Date de publication |
2023-01-16 11:15:10 (vue: 2023-01-16 14:08:25) |
Titre |
CVE-2022-43720 |
Texte |
An authenticated attacker with write CSS template permissions can create a record with specific HTML tags that will not get properly escaped by the toast message displayed when a user deletes that specific CSS template record. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0. |
Envoyé |
Oui |
Condensat |
2022 43720 affects apache attacker authenticated can create css cve deletes displayed escaped get html issue message not permissions prior properly record specific superset tags template toast user version versions when will write |
Tags |
|
Stories |
|
Notes |
|
Move |
|