📦 Jupyterhub

In JupyterHub versions before 4.1.6 and 5.1.0, users granted the admin:users scope can escalate their privileges to become full administrators with unrestricted permissions. This affects JupyterHub de...

CVE-2024-28233 is a cross-site scripting (XSS) vulnerability in JupyterHub that allows attackers to achieve full access to the JupyterHub API and user's single-user server by tricking users into visit...