You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@superset.apache.org by GitBox <gi...@apache.org> on 2020/09/04 22:22:29 UTC

[GitHub] [incubator-superset] willbarrett commented on issue #10791: SQL Injection - High Severity - A SQL injection attack consists of insertion or “injection” of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database

willbarrett commented on issue #10791:
URL: https://github.com/apache/incubator-superset/issues/10791#issuecomment-687428691


   @kpchennai if you have indeed discovered a vulnerability in Superset please email information on the vulnerability to private@superset.apache.org rather than disclosing it publicly. This will notify the project PMC members of the vulnerability and allow us to cut a new release with a security fix before publicly disclosing the vulnerability as a CVE.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org