Privilege Escalation

JupyterHub is vulnerable to Privilege Escalation. The vulnerability is due to improper management of the admin:users scope in users.py, which unintentionally allows users to elevate their privileges to full admin status...