4 matches found
CVE-2020-26232
Jupyter Server before version 1.0.6 has an Open redirect vulnerability. A maliciously crafted link to a jupyter server could redirect the browser to a different website. All jupyter servers are technically affected, however, these maliciously crafted links can only be reasonably made for known...
CVE-2020-26232
Jupyter Server before version 1.0.6 has an Open redirect vulnerability. A maliciously crafted link to a jupyter server could redirect the browser to a different website. All jupyter servers are technically affected, however, these maliciously crafted links can only be reasonably made for known...
chronix2grid (>=0.1.0rc1 <=1.0.2), jupyterlab (>=3.0.0b2 <=3.0.0rc13) +10 more potentially affected by CVE-2020-26232 via jupyter-server (>=0.0.5 <=1.0.11)
jupyter-server PYPI version =0.0.5, =0.1.0rc1, =3.0.0b2, =2.0.0b1, =0.2.0, =0.2.1, =0.0.11, =0.0.1, =0.0.6, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.1.0a4 Source cves: CVE-2020-26232 Source advisory: OSV:PYSEC-2020-234...
CVE-2020-26232
CVE-2020-26232 affects Jupyter Server prior to 1.0.6, where an open redirect vulnerability could cause a browser to be redirected to a spoofed site via a malicious link. The issue applies to all Jupyter servers in principle, but exploit links can be constructed primarily for known hosts. The most...