Filter
-Infinity
0
Trending
pip/jupyterlabHTML injection in Jupyter Notebook and JupyterLab leading to DOM Clobbering
7.6
First published (updated )
JupyterHub NbgitpullerJupyterHub has a privilege escalation vulnerability with the `admin:users` scope
7.2
First published (updated )
Jupyter Server ProxyJupyter Server Proxy has a reflected XSS issue in host parameter
9.7
First published (updated )
pip/jupyter_serverJupyter server on Windows discloses Windows user password hash
7.5
First published (updated )
pip/jupyter-server-proxyJupyter Server Proxy's Websocket Proxying does not require authentication
9.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
pip/jupyterlabPotential authentication and CSRF tokens leak in JupyterLab
7.6
EPSS
0.06%
First published (updated )
pip/notebookStored cross site scripting in Markdown Preview in JupyterLab
6.5
EPSS
0.05%
First published (updated )
pip/jupyter-lspUnsecured endpoints in the jupyter-lsp server extension
9.8
EPSS
0.09%
First published (updated )
pip/jupyter-serverJupyter Server errors include tracebacks with path information
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
pip/jupyter-serverOpen Redirect Vulnerability in jupyter-server
6.1
First published (updated )
pip/jupyter-servercross-site inclusion (XSSI) of files in jupyter-server
6.1
First published (updated )
debian/jupyter-coreExecution with Unnecessary Privileges in JupyterApp
8.8
First published (updated )
IBM Cognos Analyticsnbconvert vulnerable to cross-site scripting (XSS) via multiple exploit paths
7.5
First published (updated )
pip/jupyter-serverKnown or guessable hidden files may be accessed in Jupyter Server
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jupyter NotebookForced Browsing in Jupyter Notebook
4.3
First published (updated )
Jupyter OAuthenticatorAuthorization Bypass Through User-Controlled Key when using CILogonOAuthenticator in oauthenticator
6.5
First published (updated )
IBM Cognos AnalyticsInsertion of Sensitive Information into Log File affects Jupyter Notebook
7.5
First published (updated )
Jupyter Server ProxySensitive Auth & Cookie data stored in Jupyter server logs
7.5
First published (updated )
pip/jupyter-server-proxySSRF vulnerability (requires authentication)
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jupyter NotebookFailure to Sanitize Special Elements into a Different Plane (Special Element Injection) in notebook
10
First published (updated )
pip/jupyterlabJupyterLab: XSS due to lack of sanitization of the action attribute of an html <form>
9.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
pip/oauthenticatorBase class whitelist configuration ignored in OAuthenticator
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.