Lucene search
GoogleOSV:PYSEC-2019-157HistoryOct 31, 2019 - 3:15 p.m.
PYSEC-2019-157
2019-10-3115:15:00
Google
osv.dev
9
EPSS
0.001
Percentile
40.5%
Jupyter Notebook before 5.5.0 does not use a CSP header to treat served files as belonging to a separate origin. Thus, for example, an XSS payload can be placed in an SVG document.
Related
nvd
nvd
CVE-2018-21030
2019-10-31 15:15:10
cve
cve
CVE-2018-21030
2019-10-31 15:15:10
ubuntucve
ubuntucve
CVE-2018-21030
2019-10-31 00:00:00
prion
prion
Cross site scripting
2019-10-31 15:15:00
cvelist
cvelist
CVE-2018-21030
2019-10-31 14:52:45
osv
osv
Cross-site scripting in Jupyter Notebook
2019-11-08 17:07:42
CVE-2018-21030
2019-10-31 15:15:10
jupyter-notebook - security update
2020-11-04 00:00:00
debiancve
debiancve
CVE-2018-21030
2019-10-31 15:15:10
github
github
Cross-site scripting in Jupyter Notebook
2019-11-08 17:07:42
openvas
openvas
Debian: Security Advisory (DLA-2432-1)
2020-11-20 00:00:00
Ubuntu: Security Advisory (USN-5585-1)
2022-08-31 00:00:00
Mageia: Security Advisory (MGASA-2022-0323)
2022-09-12 00:00:00
nessus
nessus
Debian DLA-2432-1 : jupyter-notebook security update
2020-11-19 00:00:00
debian
debian
[SECURITY] [DLA 2432-1] jupyter-notebook security update
2020-11-19 04:53:40
ubuntu
ubuntu
Jupyter Notebook vulnerabilities
2022-08-30 00:00:00
mageia
mageia
Updated jupyter-notebook packages fix security vulnerability
2022-09-10 23:26:43