Lucene search
GoogleOSV:CVE-2021-39160HistoryAug 25, 2021 - 6:15 p.m.
CVE-2021-39160
2021-08-2518:15:08
Google
osv.dev
3
nbgitpuller
jupyter server
unsanitized input
arbitrary code execution
version 0.10.2
upgrade
vulnerability
nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. This has been resolved in version 0.10.2 and all users are advised to upgrade. No work around exist for users who can not upgrade.
Related
osv
osv
PYSEC-2021-315
2021-08-25 18:15:00
Code injection in nbgitpuller
2021-08-30 16:17:06
github
github
Code injection in nbgitpuller
2021-08-30 16:17:06
veracode
veracode
Remote Code Execution (RCE)
2021-08-26 01:27:20
cvelist
cvelist
CVE-2021-39160 Code injection in nbgitpuller
2021-08-25 18:10:11
nvd
nvd
CVE-2021-39160
2021-08-25 18:15:08
cve
cve
CVE-2021-39160
2021-08-25 18:15:08
prion
prion
Input validation
2021-08-25 18:15:00