HTML Injection

JupyterLite-core is vulnerable to HTML Injection. The vulnerability is due to insufficient validation of Markdown content, allowing a malicious notebook or file to access data and perform actions in the JupyterLite environment...

andeplane-pyodide-kernel (>=0.0.7 <=0.0.12), here-search-demo (>=0.9.0 <=0.9.1) +8 more potentially affected by unknown CVE via jupyterlite-core (>=0.1.2 <=0.4.0rc0)

jupyterlite-core PYPI version =0.1.2, =0.0.7, =0.9.0, =0.0.4, =0.10.0, =0.1.0, =0.9.6, =0.3.0, =0.6.0, =0.6.1 Source cves: unknown CVE Source advisory: OSV:GHSA-GJ55-2XF9-67RQ...