GMS-2015-23: XSS vulnerability

August 18, 2015

If you create a new folder in the iPython file browser and set Javascript code as its name the code injected will be executed. So, if I create a folder called “> and then I access to it, the cookies will be prompted.

References

github.com/ipython/ipython/commit/3ab41641cf6fce3860c73d5cf4645aa12e1e5892

Code Behaviors & Features

Detect and mitigate GMS-2015-23 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →