Two out of three public-facing app instances open to hijacking
Apache Superset until earlier this year shipped with an insecure default configuration that miscreants could exploit to login and take over the data visualization application, steal data, and execute malicious code.…
This article has been indexed from The Register – Security
Read the original article: