Nick Barnes

**Name of the Vulnerable Software and Affected Versions** Apache Superset versions prior to 3.0.3 **Description** A stored cross-site scripting (XSS) vulnerability exists in Apache Superset. An authenticated attacker with create/update permissions on charts or dashboards could store a script or add a specific HTML snippet that would act as a stored XSS. This could allow a remote attacker to conduct cross-site scripting attacks. **Recommendations** For versions prior to 3.0.3, update to version 3.0.3 or later to resolve the issue. For 2.X versions, users should change their config to include the specified TALISMAN CONFIG settings to mitigate the risk.

**Name of the Vulnerable Software and Affected Versions** Apache Superset versions prior to 2.1.2 **Description** The issue is caused by improper payload validation and an improper REST API response type. This allows an authenticated malicious actor to store malicious code into Chart's metadata. The code can be executed if a user accesses a specific deprecated API endpoint. **Recommendations** For Apache Superset versions prior to 2.1.2, upgrade to version 2.1.2 to fix the issue. As a temporary workaround, consider restricting access to the deprecated API endpoint until the upgrade is applied.