[ { "id": 632280900, "name": "CVE-2023-27524", "full_name": "horizon3ai\/CVE-2023-27524", "owner": { "login": "horizon3ai", "id": 79593994, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/79593994?v=4", "html_url": "https:\/\/github.com\/horizon3ai", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/horizon3ai\/CVE-2023-27524", "description": "Basic PoC for CVE-2023-27524: Insecure Default Configuration in Apache Superset", "fork": false, "created_at": "2023-04-25T04:59:05Z", "updated_at": "2024-12-05T12:03:27Z", "pushed_at": "2023-09-09T01:20:49Z", "stargazers_count": 105, "watchers_count": 105, "has_discussions": false, "forks_count": 29, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 29, "watchers": 105, "score": 0, "subscribers_count": 6 }, { "id": 633268252, "name": "Superset_auth_bypass_check", "full_name": "Okaytc\/Superset_auth_bypass_check", "owner": { "login": "Okaytc", "id": 50813688, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/50813688?v=4", "html_url": "https:\/\/github.com\/Okaytc", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/Okaytc\/Superset_auth_bypass_check", "description": "Apahce-Superset身份认证绕过漏洞(CVE-2023-27524)检测工具", "fork": false, "created_at": "2023-04-27T06:21:00Z", "updated_at": "2023-09-28T15:09:36Z", "pushed_at": "2023-08-03T09:52:22Z", "stargazers_count": 11, "watchers_count": 11, "has_discussions": false, "forks_count": 5, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 5, "watchers": 11, "score": 0, "subscribers_count": 1 }, { "id": 633292629, "name": "CVE-2023-27524", "full_name": "ZZ-SOCMAP\/CVE-2023-27524", "owner": { "login": "ZZ-SOCMAP", "id": 98105412, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/98105412?v=4", "html_url": "https:\/\/github.com\/ZZ-SOCMAP", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/ZZ-SOCMAP\/CVE-2023-27524", "description": "Apache Superset Auth Bypass Vulnerability CVE-2023-27524.", "fork": false, "created_at": "2023-04-27T07:31:40Z", "updated_at": "2024-09-19T01:43:06Z", "pushed_at": "2023-04-27T07:31:58Z", "stargazers_count": 3, "watchers_count": 3, "has_discussions": false, "forks_count": 2, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 2, "watchers": 3, "score": 0, "subscribers_count": 2 }, { "id": 636271031, "name": "CVE-2023-27524-POC", "full_name": "MaanVader\/CVE-2023-27524-POC", "owner": { "login": "MaanVader", "id": 103140982, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/103140982?v=4", "html_url": "https:\/\/github.com\/MaanVader", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/MaanVader\/CVE-2023-27524-POC", "description": "A POC for the all new CVE-2023-27524 which allows for authentication bypass and gaining access to the admin dashboard.", "fork": false, "created_at": "2023-05-04T13:29:09Z", "updated_at": "2023-05-04T13:37:40Z", "pushed_at": "2023-05-04T13:36:29Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 636446962, "name": "CVE-2023-27524", "full_name": "ThatNotEasy\/CVE-2023-27524", "owner": { "login": "ThatNotEasy", "id": 25004320, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/25004320?v=4", "html_url": "https:\/\/github.com\/ThatNotEasy", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/ThatNotEasy\/CVE-2023-27524", "description": "Perform With Apache-SuperSet Leaked Token [CSRF]", "fork": false, "created_at": "2023-05-04T21:43:48Z", "updated_at": "2024-08-12T20:31:11Z", "pushed_at": "2023-07-24T22:23:05Z", "stargazers_count": 3, "watchers_count": 3, "has_discussions": false, "forks_count": 3, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "apache", "csrf-tokens", "superset" ], "visibility": "public", "forks": 3, "watchers": 3, "score": 0, "subscribers_count": 2 }, { "id": 637902693, "name": "CVE-2023-27524", "full_name": "TardC\/CVE-2023-27524", "owner": { "login": "TardC", "id": 16506022, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/16506022?v=4", "html_url": "https:\/\/github.com\/TardC", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/TardC\/CVE-2023-27524", "description": "Apache Superset Auth Bypass (CVE-2023-27524)", "fork": false, "created_at": "2023-05-08T16:50:08Z", "updated_at": "2024-11-19T12:13:21Z", "pushed_at": "2023-05-09T03:13:59Z", "stargazers_count": 12, "watchers_count": 12, "has_discussions": false, "forks_count": 1, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 1, "watchers": 12, "score": 0, "subscribers_count": 1 }, { "id": 685257815, "name": "CVE-2023-27524", "full_name": "necroteddy\/CVE-2023-27524", "owner": { "login": "necroteddy", "id": 37003131, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/37003131?v=4", "html_url": "https:\/\/github.com\/necroteddy", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/necroteddy\/CVE-2023-27524", "description": "CVE-2023-27524", "fork": false, "created_at": "2023-08-30T20:59:28Z", "updated_at": "2023-08-30T21:00:37Z", "pushed_at": "2023-08-30T21:00:34Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 688800024, "name": "CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE", "full_name": "jakabakos\/CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE", "owner": { "login": "jakabakos", "id": 42498816, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/42498816?v=4", "html_url": "https:\/\/github.com\/jakabakos", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/jakabakos\/CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE", "description": null, "fork": false, "created_at": "2023-09-08T06:15:00Z", "updated_at": "2024-11-07T18:03:30Z", "pushed_at": "2023-09-11T06:49:19Z", "stargazers_count": 22, "watchers_count": 22, "has_discussions": false, "forks_count": 5, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 5, "watchers": 22, "score": 0, "subscribers_count": 1 }, { "id": 702903633, "name": "Apache-Superset-SECRET_KEY-CVE-2023-27524-", "full_name": "CN016\/Apache-Superset-SECRET_KEY-CVE-2023-27524-", "owner": { "login": "CN016", "id": 108575004, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/108575004?v=4", "html_url": "https:\/\/github.com\/CN016", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/CN016\/Apache-Superset-SECRET_KEY-CVE-2023-27524-", "description": "Apache Superset 默认SECRET_KEY 漏洞(CVE-2023-27524)", "fork": false, "created_at": "2023-10-10T08:23:57Z", "updated_at": "2023-10-10T08:34:01Z", "pushed_at": "2023-10-10T08:33:56Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 711672389, "name": "Research-CVE-2023-27524", "full_name": "h1n4mx0\/Research-CVE-2023-27524", "owner": { "login": "h1n4mx0", "id": 116544941, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/116544941?v=4", "html_url": "https:\/\/github.com\/h1n4mx0", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/h1n4mx0\/Research-CVE-2023-27524", "description": "CVE-2023-27524", "fork": false, "created_at": "2023-10-30T00:27:20Z", "updated_at": "2023-10-30T00:27:21Z", "pushed_at": "2023-10-30T01:15:28Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 799192194, "name": "CVE-2023-27524", "full_name": "karthi-the-hacker\/CVE-2023-27524", "owner": { "login": "karthi-the-hacker", "id": 33289300, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/33289300?v=4", "html_url": "https:\/\/github.com\/karthi-the-hacker", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/karthi-the-hacker\/CVE-2023-27524", "description": "Tool for finding CVE-2023-27524 (Apache Superset - Authentication Bypass)", "fork": false, "created_at": "2024-05-11T12:19:55Z", "updated_at": "2024-06-25T13:42:04Z", "pushed_at": "2024-05-11T12:23:36Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 799195135, "name": "CVE-2023-27524", "full_name": "Cappricio-Securities\/CVE-2023-27524", "owner": { "login": "Cappricio-Securities", "id": 102907425, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/102907425?v=4", "html_url": "https:\/\/github.com\/Cappricio-Securities", "user_view_type": "public" }, "html_url": "https:\/\/github.com\/Cappricio-Securities\/CVE-2023-27524", "description": "Apache Superset - Authentication Bypass", "fork": false, "created_at": "2024-05-11T12:29:08Z", "updated_at": "2024-06-24T07:07:58Z", "pushed_at": "2024-06-24T07:06:59Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "apache-superset", "apache-superset---authentication-bypass", "authentication-bypass", "bugbounty", "cve-2023-2752", "pentesting", "vapt", "wapt" ], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 0 } ]