5 matches found
Cross Site Scripting (XSS)
JupyterHub is vulnerable to Cross Site Scripting XSS. The vulnerability is due to the mishandling of cookies on malicious subdomains, which allows an attacker to achieve unauthorized access and control over a user's session and potentially gain full access to the JupyterHub API or the user's...
GHSA-CW7P-Q79F-M2V7 incomplete JupyterHub logout with simultaneous JupyterLab sessions
Impact Users of JupyterLab with JupyterHub who have multiple JupyterLab tabs open in the same browser session, may see incomplete logout from the single-user server, as fresh credentials for the single-user server only, not the Hub reinstated after logout, if another active JupyterLab session is...
incomplete JupyterHub logout with simultaneous JupyterLab sessions
Impact Users of JupyterLab with JupyterHub who have multiple JupyterLab tabs open in the same browser session, may see incomplete logout from the single-user server, as fresh credentials for the single-user server only, not the Hub reinstated after logout, if another active JupyterLab session is...
CVE-2021-41247 incomplete logout in JupyterHub
JupyterHub is an open source multi-user server for Jupyter notebooks. In affected versions users who have multiple JupyterLab tabs open in the same browser session, may see incomplete logout from the single-user server, as fresh credentials for the single-user server only, not the Hub reinstated...
JupyterHub 代码问题漏洞
JupyterHub is a multi-user server for Jupyter. A security vulnerability exists in JupyterHub that stems from the fact that in affected versions, users with multiple JupyterLab tabs open in the same browser session may see an incomplete logout from a single-user server because the new credentials...