Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description JupyterLab computational environment
Version 4.1.6-1 [extra]


Group Affected Fixed Severity Status Ticket
AVG-2266 3.1.2-1 3.1.4-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2021-32797 AVG-2266 High Yes Cross-site scripting
In JupyterLab before version 3.1.4, untrusted notebooks can execute code on load. In particular JupyterLab doesn't sanitize the action attribute of the HTML...


Date Advisory Group Severity Type
10 Aug 2021 ASA-202108-10 AVG-2266 High cross-site scripting