all InfoSec news
Apache Superset: A story of insecure default keys, thousands of vulnerable systems, few paying attention
April 25, 2023, 10:35 p.m. | Thomas Claburn
The Register - Security www.theregister.com
Two out of three public-facing app instances open to hijacking
Apache Superset until earlier this year shipped with an insecure default configuration that miscreants could exploit to login and take over the data visualization application, steal data, and execute malicious code.…
apache apache superset app application attention code configuration data data visualization default exploit hijacking insecure keys login malicious public steal story superset systems visualization vulnerable
More from www.theregister.com / The Register - Security
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Penetration Tester
@ Resillion | Bengaluru, India
Senior Backend Software Engineer (Java) - Privacy Engineering (Open to remote across ANZ)
@ Canva | Sydney, Australia
(Senior) Information Security Professional (w/m/d)
@ IONOS | Deutschland - Remote
Information Security (Incident Response) Intern
@ Eurofins | Katowice, Poland
Game Penetration Tester
@ Magic Media | Belgrade, Vojvodina, Serbia - Remote