Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42557 |
|
Cross-Site Scripting (XSS) in jupyterlab (CVE-2026-42557)
cross-site scripting in jupyterlab (CVE-2026-42557). Successful exploitation can lead to full system takeover. Exploitable via ``button``. Mitigation: upgrade to `4.5.7` or later.
|
| CVE-2026-42266 |
|
Vulnerability in jupyterlab (CVE-2026-42266)
vulnerability in jupyterlab (CVE-2026-42266). Successful exploitation can lead to full system takeover. Exploitable via ``allowed_extensions_uris``. Mitigation: upgrade to `4.5.7` or later.
|