2 matches found
PYSEC-2023-157
jupyter-server is the backend for Jupyter web applications. Improper cross-site credential checks on /files/ URLs could allow exposure of certain file contents, or accessing files when opening untrusted files via "Open image in new tab". This issue has been addressed in commit 87a49272728 which h...
Jupyter Server 访问控制错误漏洞
Jupyter Server is an application from the Jupyter organization used to provide back-end services for Jupyter Web applications. An access control error vulnerability exists in versions of Jupyter Server prior to 2.7.2 that stems from incorrect cross-site credential checking of URLs, which could le...