apache-superset vulnerabilities

A modern, enterprise-ready business intelligence web application

Direct Vulnerabilities

Known vulnerabilities in the apache-superset package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Arbitrary File Read

[,3.1.3) [4.0.0,4.0.1)
  • M
Incorrect Authorization

[,3.1.2) [4.0.0rc1,4.0.0rc2)
  • M
Cross-site Scripting (XSS)

[,2.1.0)
  • M
Improper Authorization

[,3.0.4) [3.1.0,3.1.1)
  • M
Insertion of Sensitive Information into Log File

[,3.0.4) [3.1.0rc1,3.1.1)
  • M
Improper Authorization

[,3.0.4) [3.1.0rc1,3.1.1)
  • M
Incorrect Authorization

[,3.0.4) [3.1.0rc1,3.1.1)
  • M
SQL Injection

[,3.0.4) [3.1.0rc1,3.1.1)
  • M
Cross-site Scripting (XSS)

[,3.0.3)
  • M
Uncontrolled Resource Consumption

[,2.1.3) [3.0.0,3.0.2)
  • M
SQL Injection

[,2.1.3) [3.0.0,3.0.2)
  • H
Incorrect Authorization

[,2.1.3) [3.0.0,3.0.2)
  • M
Allocation of Resources Without Limits or Throttling

[,2.1.3) [3.0.0rc1,3.0.0)
  • M
Incorrect Default Permissions

[,2.1.2)
  • M
Open Redirect

[,3.0.0)
  • M
Cross-site Scripting (XSS)

[,2.1.2)
  • M
Incorrect Authorization

[,2.1.2)
  • M
Information Exposure

[,3.0.0)
  • M
Information Exposure

[,2.1.1)
  • M
Improper Preservation of Permissions

[,2.1.1)
  • L
Improper Input Validation

[,2.1.1)
  • M
Deserialization of Untrusted Data

[1.5.0,2.1.1)
  • M
Server-side Request Forgery (SSRF)

[,2.1.1)
  • M
Incorrect Authorization

[,2.1.1)
  • M
Incorrect Authorization

[,2.1.1)
  • M
Access Restriction Bypass

[,2.1.1)
  • M
Server-side Request Forgery (SSRF)

[,2.1.0)
  • M
Information Exposure

[1.3.0,2.1.0)
  • H
Insecure Default Initialization of Resource

[,2.1.0)
  • L
Access Restriction Bypass

[,2.1.0)
  • L
Open Redirect

[,1.5.3) [2.0.0,2.0.1)
  • M
Cross-site Request Forgery (CSRF)

[,1.5.3) [2.0.0,2.0.1)
  • M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

[,1.5.3) [2.0.0,2.0.1)
  • M
Improper Access Control

[,1.5.3) [2.0.0,2.0.1)
  • M
SQL Injection

[,1.5.3) [2.0.0,2.0.1)
  • M
Cross-site Scripting (XSS)

[,1.5.3) [2.0.0,2.0.1)
  • L
Cross-site Scripting (XSS)

[,1.5.3) [2.0.0,2.0.1)
  • M
Information Exposure

[,1.5.1)
  • C
SQL Injection

[,1.4.2)
  • M
Insufficiently Protected Credentials

[,1.4.0)
  • H
Improper Output Neutralization for Logs

[,1.3.2)
  • M
Improper Output Neutralization for Logs

[,1.3.2)
  • M
Insufficiently Protected Credentials

[,1.3.2)
  • M
Cross-site Scripting (XSS)

[,1.2.0)
  • M
SQL Injection

[,1.3.1)
  • M
Open Redirect

[,1.1.0)
  • H
Cross-site Scripting (XSS)

[,0.38.1)
  • M
Cross-site Scripting (XSS)

[,0.36.0)
  • M
Insecure Defaults

[,0.35.1)
  • M
Cross-site Scripting (XSS)

[,0.34.0)
  • M
Cross-site Scripting (XSS)

[,0.34.0)
  • C
Arbitrary Code Execution

[,0.34.0)
  • M
Cross-site Scripting (XSS)

[,0.34.0)
  • M
Information Exposure

[,0.37.2)
  • H
Remote Code Execution (RCE)

[,0.37.1)
  • M
Information Exposure

[,0.34.0)
  • M
Information Exposure

[,0.34.0)
  • M
Information Exposure

[0.34.0,0.35.2)

Package versions

1 - 54 of 54 Results
version published direct vulnerabilities
4.0.1 13 May, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
4.0.0 8 Apr, 2024
  • 0
    C
  • 0
    H
  • 1
    M
  • 0
    L
4.0.0rc2 2 Apr, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
4.0.0rc1 20 Feb, 2024
  • 0
    C
  • 0
    H
  • 1
    M
  • 0
    L
3.1.3 9 May, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
3.1.2 3 Apr, 2024
  • 0
    C
  • 0
    H
  • 1
    M
  • 0
    L
3.1.1 20 Feb, 2024
  • 0
    C
  • 0
    H
  • 2
    M
  • 0
    L
3.1.0 18 Jan, 2024
  • 0
    C
  • 0
    H
  • 7
    M
  • 0
    L
3.1.0rc4 9 Jan, 2024
  • 0
    C
  • 0
    H
  • 6
    M
  • 0
    L
3.1.0rc3 18 Dec, 2023
  • 0
    C
  • 0
    H
  • 6
    M
  • 0
    L
3.1.0rc2 11 Dec, 2023
  • 0
    C
  • 0
    H
  • 6
    M
  • 0
    L
3.1.0rc1 28 Nov, 2023
  • 0
    C
  • 0
    H
  • 6
    M
  • 0
    L
3.0.4 20 Feb, 2024
  • 0
    C
  • 0
    H
  • 2
    M
  • 0
    L
3.0.3 17 Jan, 2024
  • 0
    C
  • 0
    H
  • 7
    M
  • 0
    L
3.0.2 22 Nov, 2023
  • 0
    C
  • 0
    H
  • 8
    M
  • 0
    L
3.0.1 18 Oct, 2023
  • 0
    C
  • 1
    H
  • 10
    M
  • 0
    L
3.0.0 18 Sep, 2023
  • 0
    C
  • 1
    H
  • 10
    M
  • 0
    L
3.0.0rc4 13 Sep, 2023
  • 0
    C
  • 0
    H
  • 11
    M
  • 0
    L
3.0.0rc3 24 Aug, 2023
  • 0
    C
  • 0
    H
  • 11
    M
  • 0
    L
3.0.0rc2 27 Jul, 2023
  • 0
    C
  • 0
    H
  • 11
    M
  • 0
    L
3.0.0rc1 3 Jul, 2023
  • 0
    C
  • 0
    H
  • 11
    M
  • 0
    L
2.1.3 16 Dec, 2023
  • 0
    C
  • 0
    H
  • 10
    M
  • 0
    L
2.1.2 23 Nov, 2023
  • 0
    C
  • 1
    H
  • 13
    M
  • 0
    L
2.1.1 29 Aug, 2023
  • 0
    C
  • 1
    H
  • 16
    M
  • 0
    L
2.1.1rc3 18 Aug, 2023
  • 0
    C
  • 1
    H
  • 23
    M
  • 1
    L
2.1.1rc2 24 Jul, 2023
  • 0
    C
  • 1
    H
  • 23
    M
  • 1
    L
2.1.1rc1 16 Jun, 2023
  • 0
    C
  • 1
    H
  • 23
    M
  • 1
    L
2.1.0 5 Apr, 2023
  • 0
    C
  • 1
    H
  • 23
    M
  • 1
    L
2.0.1 20 Dec, 2022
  • 0
    C
  • 2
    H
  • 26
    M
  • 2
    L
2.0.0 14 Jul, 2022
  • 0
    C
  • 2
    H
  • 31
    M
  • 4
    L
1.5.3 13 Jan, 2023
  • 0
    C
  • 2
    H
  • 26
    M
  • 2
    L
1.5.2 27 Sep, 2022
  • 0
    C
  • 2
    H
  • 31
    M
  • 4
    L
1.5.1 8 Jun, 2022
  • 0
    C
  • 2
    H
  • 31
    M
  • 4
    L
1.5.0 28 Apr, 2022
  • 0
    C
  • 2
    H
  • 32
    M
  • 4
    L
1.4.2 29 Mar, 2022
  • 0
    C
  • 2
    H
  • 31
    M
  • 4
    L
1.4.1 9 Feb, 2022
  • 1
    C
  • 2
    H
  • 31
    M
  • 4
    L
1.4.0 19 Jan, 2022
  • 1
    C
  • 2
    H
  • 31
    M
  • 4
    L
1.3.2 20 Oct, 2021
  • 1
    C
  • 2
    H
  • 32
    M
  • 4
    L
1.3.1 28 Sep, 2021
  • 1
    C
  • 3
    H
  • 34
    M
  • 4
    L
1.3.0 21 Aug, 2021
  • 1
    C
  • 3
    H
  • 35
    M
  • 4
    L
1.2.0 2 Jul, 2021
  • 1
    C
  • 3
    H
  • 34
    M
  • 4
    L
1.1.0 13 Apr, 2021
  • 1
    C
  • 3
    H
  • 35
    M
  • 4
    L
1.0.1 6 Feb, 2021
  • 1
    C
  • 3
    H
  • 36
    M
  • 4
    L
1.0.0 21 Jan, 2021
  • 1
    C
  • 3
    H
  • 36
    M
  • 4
    L
0.38.1 1 Mar, 2021
  • 1
    C
  • 3
    H
  • 36
    M
  • 4
    L
0.38.0 24 Nov, 2020
  • 1
    C
  • 4
    H
  • 36
    M
  • 4
    L
0.37.2 27 Sep, 2020
  • 1
    C
  • 4
    H
  • 36
    M
  • 4
    L
0.37.1 15 Sep, 2020
  • 1
    C
  • 4
    H
  • 37
    M
  • 4
    L
0.37.0 14 Aug, 2020
  • 1
    C
  • 5
    H
  • 37
    M
  • 4
    L
0.36.0 17 Apr, 2020
  • 1
    C
  • 5
    H
  • 37
    M
  • 4
    L
0.35.2 15 Jan, 2020
  • 1
    C
  • 5
    H
  • 38
    M
  • 4
    L
0.35.1 26 Nov, 2019
  • 1
    C
  • 5
    H
  • 39
    M
  • 4
    L
0.34.1 12 Oct, 2019
  • 1
    C
  • 5
    H
  • 40
    M
  • 4
    L
0.34.0 18 Sep, 2019
  • 1
    C
  • 5
    H
  • 40
    M
  • 4
    L