GHSA-G53G-Q539-93CV Server-Side Request Forgery in scout-browser

Pypi package scout-browser GitHub repository clinical-genomics/scout prior to v4.52 is vulnerable to server-side request forgery. An attacker could make the application perform arbitrary requests to steal cookies, request access to private areas, or lead to cross-site scripting...

cg (>=1.0.0 <=16.3.4) potentially affected by CVE-2022-1592 via scout-browser (>=4.24.0 <=4.51.0)

scout-browser PYPI version =4.24.0, =1.0.0, =16.3.4 Source cves: CVE-2022-1592 Source advisory: OSV:GHSA-G53G-Q539-93CV...

Server-Side Request Forgery in scout-browser

Pypi package scout-browser GitHub repository clinical-genomics/scout prior to v4.52 is vulnerable to server-side request forgery. An attacker could make the application perform arbitrary requests to steal cookies, request access to private areas, or lead to cross-site scripting...

cg (>=1.0.0 <=16.3.4) potentially affected by CVE-2022-1554 via scout-browser (>=4.24.0 <=4.51.0)

scout-browser PYPI version =4.24.0, =1.0.0, =16.3.4 Source cves: CVE-2022-1554 Source advisory: OSV:GHSA-694V-63FQ-FMR4...

Path Traversal in scout-browser

Scout is a Variant Call Format VCF visualization interface. The Pypi package scout-browser is vulnerable to path traversal due to sendfile call in versions prior to 4.52...

GHSA-694V-63FQ-FMR4 Path Traversal in scout-browser

Scout is a Variant Call Format VCF visualization interface. The Pypi package scout-browser is vulnerable to path traversal due to sendfile call in versions prior to 4.52...