ipython: cross-site scripting
| Package(s): | ipython | CVE #(s): | CVE-2015-4707 | ||||
| Created: | August 4, 2015 | Updated: | August 5, 2015 | ||||
| Description: | From the Mageia advisory:
JSON error responses from the IPython notebook REST API contained URL parameters and were incorrectly reported as text/html instead of application/json. The error messages included some of these URL params, resulting in a cross site scripting attack | ||||||
| Alerts: |
| ||||||