Apache Superset is a data visualization and data exploration platform from the Apache (USA) Foundation. Apache Superset suffers from a SQL injection vulnerability that can be exploited by an authenticated, remote attacker to send specially crafted SQL statements to the where_in JINJA macro.