Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2022-24853
- EPSS 9.73%
- Veröffentlicht 14.04.2022 22:15:08
- Zuletzt bearbeitet 21.11.2024 06:51:14
Metabase is an open source business intelligence and analytics application. Metabase has a proxy to load arbitrary URLs for JSON maps as part of our GeoJSON support. While we do validation to not return contents of arbitrary URLs, there is a case whe...
7.5
CVE-2021-41277
- EPSS 94.35%
- Veröffentlicht 17.11.2021 20:15:10
- Zuletzt bearbeitet 24.10.2025 14:47:07
Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map (`admin->settings->maps->custom maps->add a map`) support and potential local file inclusion (including environm...
6.1
CVE-2018-0697
- EPSS 0.26%
- Veröffentlicht 15.11.2018 15:29:01
- Zuletzt bearbeitet 21.11.2024 03:38:46
Cross-site scripting vulnerability in Metabase version 0.29.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.