An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. Servers running on a base_url prefix are not affected.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-28T15:30:39
Updated: 2019-04-12T02:06:00
Reserved: 2019-03-28T00:00:00
Link: CVE-2019-10255
JSON object: View
NVD Information
Status : Modified
Published: 2019-03-28T16:29:00.567
Modified: 2023-11-07T03:02:28.030
Link: CVE-2019-10255
JSON object: View
Redhat Information
No data.
CWE