2023-04-25 14:34:49 +02:00
|
|
|
[
|
|
|
|
|
{
|
|
|
|
|
"id": 632280900,
|
|
|
|
|
"name": "CVE-2023-27524",
|
|
|
|
|
"full_name": "horizon3ai\/CVE-2023-27524",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "horizon3ai",
|
|
|
|
|
"id": 79593994,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/79593994?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/horizon3ai"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/horizon3ai\/CVE-2023-27524",
|
|
|
|
|
"description": "Basic PoC for CVE-2023-27524: Insecure Default Configuration in Apache Superset",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-04-25T04:59:05Z",
|
2024-02-21 13:26:46 +01:00
|
|
|
"updated_at": "2024-02-21T08:47:47Z",
|
2023-09-09 08:24:58 +02:00
|
|
|
"pushed_at": "2023-09-09T01:20:49Z",
|
2024-02-21 13:26:46 +01:00
|
|
|
"stargazers_count": 98,
|
|
|
|
|
"watchers_count": 98,
|
2023-04-25 14:34:49 +02:00
|
|
|
"has_discussions": false,
|
2023-12-13 19:59:38 +01:00
|
|
|
"forks_count": 28,
|
2023-04-25 14:34:49 +02:00
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2023-12-13 19:59:38 +01:00
|
|
|
"forks": 28,
|
2024-02-21 13:26:46 +01:00
|
|
|
"watchers": 98,
|
2023-06-19 15:46:37 +02:00
|
|
|
"score": 0,
|
2023-11-24 07:29:58 +01:00
|
|
|
"subscribers_count": 6
|
2023-04-27 08:29:35 +02:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 633268252,
|
|
|
|
|
"name": "Superset_auth_bypass_check",
|
|
|
|
|
"full_name": "Okaytc\/Superset_auth_bypass_check",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "Okaytc",
|
|
|
|
|
"id": 50813688,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/50813688?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/Okaytc"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/Okaytc\/Superset_auth_bypass_check",
|
|
|
|
|
"description": "Apahce-Superset身份认证绕过漏洞(CVE-2023-27524)检测工具",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-04-27T06:21:00Z",
|
2023-09-28 20:35:24 +02:00
|
|
|
"updated_at": "2023-09-28T15:09:36Z",
|
2023-08-03 15:58:17 +02:00
|
|
|
"pushed_at": "2023-08-03T09:52:22Z",
|
2023-09-28 20:35:24 +02:00
|
|
|
"stargazers_count": 11,
|
|
|
|
|
"watchers_count": 11,
|
2023-04-27 08:29:35 +02:00
|
|
|
"has_discussions": false,
|
2023-07-22 02:25:53 +02:00
|
|
|
"forks_count": 5,
|
2023-04-27 08:29:35 +02:00
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2023-07-22 02:25:53 +02:00
|
|
|
"forks": 5,
|
2023-09-28 20:35:24 +02:00
|
|
|
"watchers": 11,
|
2023-06-19 15:46:37 +02:00
|
|
|
"score": 0,
|
|
|
|
|
"subscribers_count": 1
|
2023-04-27 14:41:25 +02:00
|
|
|
},
|
2023-11-03 07:25:04 +01:00
|
|
|
{
|
|
|
|
|
"id": 633292629,
|
|
|
|
|
"name": "CVE-2023-27524",
|
|
|
|
|
"full_name": "antx-code\/CVE-2023-27524",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "antx-code",
|
|
|
|
|
"id": 7877940,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/7877940?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/antx-code"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/antx-code\/CVE-2023-27524",
|
|
|
|
|
"description": "Apache Superset Auth Bypass Vulnerability CVE-2023-27524.",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-04-27T07:31:40Z",
|
|
|
|
|
"updated_at": "2023-05-02T04:21:43Z",
|
|
|
|
|
"pushed_at": "2023-04-27T07:31:58Z",
|
|
|
|
|
"stargazers_count": 3,
|
|
|
|
|
"watchers_count": 3,
|
|
|
|
|
"has_discussions": false,
|
|
|
|
|
"forks_count": 2,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 2,
|
|
|
|
|
"watchers": 3,
|
|
|
|
|
"score": 0,
|
|
|
|
|
"subscribers_count": 1
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 636271031,
|
|
|
|
|
"name": "CVE-2023-27524-POC",
|
|
|
|
|
"full_name": "MaanVader\/CVE-2023-27524-POC",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "MaanVader",
|
|
|
|
|
"id": 103140982,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/103140982?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/MaanVader"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/MaanVader\/CVE-2023-27524-POC",
|
|
|
|
|
"description": "A POC for the all new CVE-2023-27524 which allows for authentication bypass and gaining access to the admin dashboard.",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-05-04T13:29:09Z",
|
|
|
|
|
"updated_at": "2023-05-04T13:37:40Z",
|
|
|
|
|
"pushed_at": "2023-05-04T13:36:29Z",
|
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
|
|
|
|
"has_discussions": false,
|
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0,
|
|
|
|
|
"subscribers_count": 1
|
|
|
|
|
},
|
2023-05-05 02:28:48 +02:00
|
|
|
{
|
|
|
|
|
"id": 636446962,
|
|
|
|
|
"name": "CVE-2023-27524",
|
2023-11-21 19:43:11 +01:00
|
|
|
"full_name": "ThatNotEasy\/CVE-2023-27524",
|
2023-05-05 02:28:48 +02:00
|
|
|
"owner": {
|
2023-11-21 19:43:11 +01:00
|
|
|
"login": "ThatNotEasy",
|
2023-05-05 02:28:48 +02:00
|
|
|
"id": 25004320,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/25004320?v=4",
|
2023-11-21 19:43:11 +01:00
|
|
|
"html_url": "https:\/\/github.com\/ThatNotEasy"
|
2023-05-05 02:28:48 +02:00
|
|
|
},
|
2023-11-21 19:43:11 +01:00
|
|
|
"html_url": "https:\/\/github.com\/ThatNotEasy\/CVE-2023-27524",
|
2023-05-05 02:28:48 +02:00
|
|
|
"description": "Perform With Apache-SuperSet Leaked Token [CSRF]",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-05-04T21:43:48Z",
|
2023-10-27 08:24:50 +02:00
|
|
|
"updated_at": "2023-10-27T02:56:15Z",
|
2023-07-25 02:27:49 +02:00
|
|
|
"pushed_at": "2023-07-24T22:23:05Z",
|
2023-10-27 08:24:50 +02:00
|
|
|
"stargazers_count": 4,
|
|
|
|
|
"watchers_count": 4,
|
2023-05-05 02:28:48 +02:00
|
|
|
"has_discussions": false,
|
2023-10-16 02:25:39 +02:00
|
|
|
"forks_count": 3,
|
2023-05-05 02:28:48 +02:00
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [
|
|
|
|
|
"apache",
|
|
|
|
|
"csrf-tokens",
|
|
|
|
|
"superset"
|
|
|
|
|
],
|
|
|
|
|
"visibility": "public",
|
2023-10-16 02:25:39 +02:00
|
|
|
"forks": 3,
|
2023-10-27 08:24:50 +02:00
|
|
|
"watchers": 4,
|
2023-06-19 15:46:37 +02:00
|
|
|
"score": 0,
|
|
|
|
|
"subscribers_count": 2
|
2023-05-08 20:30:41 +02:00
|
|
|
},
|
2023-11-03 07:25:04 +01:00
|
|
|
{
|
|
|
|
|
"id": 637902693,
|
|
|
|
|
"name": "CVE-2023-27524",
|
|
|
|
|
"full_name": "TardC\/CVE-2023-27524",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "TardC",
|
|
|
|
|
"id": 16506022,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/16506022?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/TardC"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/TardC\/CVE-2023-27524",
|
|
|
|
|
"description": null,
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-05-08T16:50:08Z",
|
|
|
|
|
"updated_at": "2023-09-15T11:45:38Z",
|
|
|
|
|
"pushed_at": "2023-05-09T03:13:59Z",
|
|
|
|
|
"stargazers_count": 12,
|
|
|
|
|
"watchers_count": 12,
|
|
|
|
|
"has_discussions": false,
|
|
|
|
|
"forks_count": 1,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 1,
|
|
|
|
|
"watchers": 12,
|
|
|
|
|
"score": 0,
|
|
|
|
|
"subscribers_count": 1
|
|
|
|
|
},
|
2023-08-31 02:31:21 +02:00
|
|
|
{
|
|
|
|
|
"id": 685257815,
|
|
|
|
|
"name": "CVE-2023-27524",
|
|
|
|
|
"full_name": "necroteddy\/CVE-2023-27524",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "necroteddy",
|
|
|
|
|
"id": 37003131,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/37003131?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/necroteddy"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/necroteddy\/CVE-2023-27524",
|
|
|
|
|
"description": "CVE-2023-27524",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-08-30T20:59:28Z",
|
|
|
|
|
"updated_at": "2023-08-30T21:00:37Z",
|
|
|
|
|
"pushed_at": "2023-08-30T21:00:34Z",
|
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
|
|
|
|
"has_discussions": false,
|
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0,
|
2023-08-31 08:39:21 +02:00
|
|
|
"subscribers_count": 1
|
2023-09-08 08:53:41 +02:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 688800024,
|
|
|
|
|
"name": "CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE",
|
|
|
|
|
"full_name": "jakabakos\/CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "jakabakos",
|
|
|
|
|
"id": 42498816,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/42498816?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/jakabakos"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/jakabakos\/CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE",
|
|
|
|
|
"description": null,
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-09-08T06:15:00Z",
|
2024-02-07 13:26:17 +01:00
|
|
|
"updated_at": "2024-02-07T09:02:53Z",
|
2023-09-11 16:23:27 +02:00
|
|
|
"pushed_at": "2023-09-11T06:49:19Z",
|
2024-02-07 13:26:17 +01:00
|
|
|
"stargazers_count": 16,
|
|
|
|
|
"watchers_count": 16,
|
2023-09-08 08:53:41 +02:00
|
|
|
"has_discussions": false,
|
2024-01-04 20:15:09 +01:00
|
|
|
"forks_count": 4,
|
2023-09-08 08:53:41 +02:00
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2024-01-04 20:15:09 +01:00
|
|
|
"forks": 4,
|
2024-02-07 13:26:17 +01:00
|
|
|
"watchers": 16,
|
2023-09-08 08:53:41 +02:00
|
|
|
"score": 0,
|
2023-09-09 08:24:58 +02:00
|
|
|
"subscribers_count": 1
|
2023-10-10 15:13:32 +02:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 702903633,
|
|
|
|
|
"name": "Apache-Superset-SECRET_KEY-CVE-2023-27524-",
|
|
|
|
|
"full_name": "CN016\/Apache-Superset-SECRET_KEY-CVE-2023-27524-",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "CN016",
|
|
|
|
|
"id": 108575004,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/108575004?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/CN016"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/CN016\/Apache-Superset-SECRET_KEY-CVE-2023-27524-",
|
|
|
|
|
"description": "Apache Superset 默认SECRET_KEY 漏洞(CVE-2023-27524)",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-10-10T08:23:57Z",
|
|
|
|
|
"updated_at": "2023-10-10T08:34:01Z",
|
|
|
|
|
"pushed_at": "2023-10-10T08:33:56Z",
|
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
|
|
|
|
"has_discussions": false,
|
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0,
|
2023-10-11 08:46:19 +02:00
|
|
|
"subscribers_count": 1
|
2023-10-30 07:25:00 +01:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 711672389,
|
|
|
|
|
"name": "Research-CVE-2023-27524",
|
|
|
|
|
"full_name": "NguyenCongHaiNam\/Research-CVE-2023-27524",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "NguyenCongHaiNam",
|
|
|
|
|
"id": 116544941,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/116544941?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/NguyenCongHaiNam"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/NguyenCongHaiNam\/Research-CVE-2023-27524",
|
|
|
|
|
"description": "CVE-2023-27524",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2023-10-30T00:27:20Z",
|
|
|
|
|
"updated_at": "2023-10-30T00:27:21Z",
|
|
|
|
|
"pushed_at": "2023-10-30T01:15:28Z",
|
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
|
|
|
|
"has_discussions": false,
|
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"web_commit_signoff_required": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0,
|
2023-10-31 07:24:59 +01:00
|
|
|
"subscribers_count": 1
|
2023-04-25 14:34:49 +02:00
|
|
|
}
|
|
|
|
|
]
|
