Количество 2
Количество 2
CVE-2021-28125
Apache Superset up to and including 1.0.1 allowed for the creation of an external URL that could be malicious. By not checking user input for open redirects the URL shortener functionality would allow for a malicious user to create a short URL for a dashboard that could convince the user to click the link.
GHSA-pfwg-rxf4-97c3
Open Redirect in Apache Superset
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-28125 Apache Superset up to and including 1.0.1 allowed for the creation of an external URL that could be malicious. By not checking user input for open redirects the URL shortener functionality would allow for a malicious user to create a short URL for a dashboard that could convince the user to click the link. | CVSS3: 6.1 | 5% Низкий | почти 5 лет назад |
| GHSA-pfwg-rxf4-97c3 Open Redirect in Apache Superset | CVSS3: 6.1 | 5% Низкий | больше 4 лет назад |
Уязвимостей на страницу