Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi notebook Security Advisories

Loading...
High
GSA_kwCzR0hTQS00NGNjLTQzcnAtNTk0N84AA4lA
JupyterLab vulnerable to potential authentication and CSRF tokens leak
Ecosystems: pypi
Packages: notebook, jupyterlab
Source: GitHub Advisory Database
Blast Radius: 36.3
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS00bTc3LWNtcHgtdmpjNM4AA4k_
JupyterLab vulnerable to SXSS in Markdown Preview
Ecosystems: pypi
Packages: notebook, jupyterlab
Source: GitHub Advisory Database
Blast Radius: 31.1
Published: 6 months ago
Moderate
GSA_kwCzR0hTQS12N3ZxLTN4NzctODd2Z84AArqq
Token bruteforcing.
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 20.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05Mm1yLXY3MjItZjQ4bc4AAcm1
Improper Input Validation in Jupyter Notebook
Ecosystems: pypi
Packages: ipython, notebook
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00dndxLXg2NHEtajRjas4AAU96
Improper Neutralization of Input During Web Page Generation in Jupyter Notebook
Ecosystems: pypi
Packages: ipython, notebook
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1tODdmLTM5cTktNmY1Nc04jA
Sensitive Auth & Cookie data stored in Jupyter server logs
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 35.8
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3dnEtNmdqeC1qNzk3
Special Element Injection in notebook
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: almost 3 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5NTItcDU4cS02Y3J4
JupyterLab: XSS due to lack of sanitization of the action attribute of an html <form>
Ecosystems: pypi
Packages: notebook, jupyterlab
Source: GitHub Advisory Database
Blast Radius: 35.4
Published: almost 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3dm0tZjVwNC04ZnFo
Open redirect in Jupyter Notebook
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 21.0
Published: over 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpxd2Mtam01Ni13Y3dq
Cross-site scripting in Jupyter Notebook
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: over 4 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjeDItbTdqcC1wOXdq
Jupyter Notebook open redirect vulnerability
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2NjItNHBtai14dzZo
Open Redirect vulnerability in jupyterhub and notebook
Ecosystems: pypi
Packages: jupyterhub, notebook
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNwNHEteDhmMy1wN3Zx
Jupyter Notebook XSS via directory name
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5cXIteGgzdy1oNDM2
Jupyter Notebook XSS via untrusted notebooks
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjd3YteDI2Yy13MnE0
Jupyter Notebook file bypasses sanitization, executes JavaScript
Ecosystems: pypi
Packages: notebook
Source: GitHub Advisory Database
Blast Radius: 37.3
Published: about 6 years ago
Statistics
Advisories: 19,557
Packages: 8,629
Repositories: 4
Ecosystems: 12
Filter by Package
tensorflow 432 tensorflow-cpu 387 tensorflow-gpu 384 apache-airflow 82 django 80 ansible 63 salt 55 Plone 52 apache-superset 51 nova 47 mlflow 46 plone 43 rdiffweb 42 Pillow 41 vyper 38 Django 36 moin 35 matrix-synapse 35 keystone 31 opencv-python 30 opencv-contrib-python 30 glance 20 langchain 19 gradio 18 PaddlePaddle 17 cobbler 17 mercurial 17 neutron 16 pillow 16 cryptography 15 paddlepaddle 15 notebook 15 modoboa 14 pyftpdlib 14 pyload-ng 14 ethyca-fides 13 vantage6 13 OctoPrint 13 urllib3 12 swift 12 roundup 12 wagtail 12 calibreweb 12 horizon 11 onionshare-cli 11 aiohttp 11 zenml 11 twisted 11 Flask-AppBuilder 10 trytond 10 nautobot 10 Zope 9 kiwitcms 9 ryu 9 zope 9 cinder 9 opencv-python-headless 9 opencv-contrib-python-headless 9 waitress 9 aubio 8 python-keystoneclient 8 trac 8 numpy 8 label-studio 8 matrix-sydent 7 ipython 7 pip 7 pgadmin4 7 pysaml2 7 sentry 7 lief 7 jupyter-server 7 litellm 7 scrapy 7 lollms 7 tornado 6 tuf 6 graphite-web 6 yt-dlp 6 Moin 6 requests 6 apache-airflow-providers-apache-hive 6 Zope2 6 mailman 6 lxml 6 inventree 6 mindsdb 6 web2py 6 whoogle-search 5 pyspark 5 ckan 5 saleor 5 feedparser 5 torchserve 5 Products.CMFPlone 5 omero-web 5 nltk 5 paramiko 5 Jinja2 5 python-gnupg 5 lmdb 5 bleach 5 oauthenticator 5 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 langchain-experimental 4 aws-iot-device-sdk-v2 4 awsiotsdk 4 PyPDF2 4 GitPython 4 grpcio 4 grpc 4 datasette 4 ansible-core 4 nvflare 4 Keystone 4 Werkzeug 4 keylime 4 starlette 4 Scrapy 4 qutebrowser 4 dbt-core 4 Weblate 4 Flask-Security-Too 4 reportlab 4 barbican 4 Pygments 4 buildbot 4 pretix 4 tripleo-heat-templates 4 werkzeug 4 httpie 4 FreeTAKServer-UI 4 transformers 4 markdown2 4 jupyterhub 4 jwcrypto 4 esphome 4 bottle 4 Radicale 4 apache-libcloud 3 mitmproxy 3 Red-DiscordBot 3 jupyter-server-proxy 3 tinymce 3 poetry 3 onnx 3 streamlit 3 plone.app.event 3 indico 3 Products.PluggableAuthService 3 indy-node 3 aim 3 homeassistant 3 io.grpc:grpc-protobuf 3 localstack 3 plone.app.theming 3 openvpn-monitor 3 rsa 3 sanic 3 ydata-profiling 3 protobuf 3 keystonemiddleware 3 python-jose 3 certifi 3 vanna 3 fava 3 SQLAlchemy 3 flask 3 apache-iotdb 3 pandasai 3 mayan-edms 3 scikit-learn 3 pycrypto 3 sqlparse 3 jupyterlab 3 Kallithea 3 pyyaml 3 ujson 3 sickrage 3 pywasm3 3 keyring 3 httplib2 3 sosreport 3 pyarrow 3 asyncssh 3 wger 3 gerapy 3 asyncua 3 setuptools 3 octavia 3 apache-airflow-providers-apache-spark 3 docassemble.webapp 3 slixmpp 3 bitlyshortener 3 clearml 3 ajenti 3 plone.app.dexterity 3 Mezzanine 3 llama-index 3 tinymce/tinymce 3