CVE-2021-41972

Apache Superset up to and including 1.3.1 allowed for database connections password leak for authenticated users. This information could be accessed in a non-trivial way. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt