CVE-2022-43719
pypi/superset
Cross-Site Request Forgery (CSRF)
Two legacy REST API endpoints for approval and request access is vulnerable to cross site request forgery. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0.
All versions up to 1.5.2, version 2.0.0
Unfortunately, there is no solution available yet.
2023-01-25
source |