3 matches found
CVE-2021-39160
nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. This has been resolved in version 0.10.2 and all users are advised to upgrade...
CVE-2021-39160
nbgitpuller is a Jupyter server extension that is vulnerable to arbitrary code execution due to unsanitized input when visiting crafted links. The issue affects the component responsible for syncing a git repository to a local path and has been fixed in version 0.10.2; users are advised to upgrad...
CVE-2021-39160 Code injection in nbgitpuller
nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. This has been resolved in version 0.10.2 and all users are advised to upgrade...