CVE-2023-27524: Apache Superset Auth Bypass
Script to check if an Apache Superset server is running with an insecure default configuration (CVE-2023-27524). The script checks if a Superset server's session cookies are signed with any well-known default Flask SECRET_KEYs.
URL : https://github.com/horizon3ai/CVE-2023-27524
More details here: https://www.horizon3.ai/cve-2023-27524-insecure-default-configuration-in-apache-superset