Two legacy REST API endpoints for approval and request access are vulnerable to cross site request forgery. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0.
{ "github_reviewed": true, "github_reviewed_at": "2023-01-20T16:25:28Z", "nvd_published_at": "2023-01-16T11:15:00Z", "cwe_ids": [ "CWE-352" ], "severity": "HIGH" }