You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Matthias Bussonnier
35f32dd2da
Fix XSS reported on Security list ...
No CVE-ID yet
August 18, 2015
-----
Reported to Quantopian by Juan Broullón <thebrowfc@gmail.com>...
If you create a new folder in the iPython file browser and set
Javascript code as its name the code injected will be executed. So, if I
create a folder called "><img src=x onerror=alert(document.cookie)> and
then I access to it, the cookies will be prompted.
The XSS code is also executed if you access a link pointing directly at
the folder.
jik
------
11 years ago
..
auth
restrict login redirect to notebook app
11 years ago
base
Revert "Use NPM, node ES5, and browserify."
11 years ago
edit
s/jupyter_notebook/notebook
11 years ago
files
s/jupyter_notebook/notebook
11 years ago
kernelspecs
s/jupyter_notebook/notebook
11 years ago
nbconvert
Put config_dir in resources in nbconvert handlers
11 years ago
notebook
s/jupyter_notebook/notebook
11 years ago
services
Finish writing the command palette
11 years ago
static
Revert "Use NPM, node ES5, and browserify."
11 years ago
templates
Revert "Use NPM, node ES5, and browserify."
11 years ago
terminal
Env variables for server root & URL in terminals
11 years ago
tests
Revert "Use NPM, node ES5, and browserify."
11 years ago
tree
remove clusters tab from notebook
11 years ago
__init__.py
s/jupyter_notebook/notebook
11 years ago
__main__.py
s/jupyter_notebook/notebook
11 years ago
_sysinfo.py
leave empty commit hash when none found
11 years ago
_version.py
back to dev
11 years ago
allow76.py
s/jupyter_notebook/notebook
11 years ago
jstest.py
s/jupyter_notebook/notebook
11 years ago
log.py
s/jupyter_notebook/notebook
11 years ago
nbextensions.py
relative import of ConfigManager
11 years ago
notebookapp.py
Fix XSS reported on Security list
11 years ago
utils.py
s/jupyter_notebook/notebook
11 years ago
Matthias Bussonnier
35f32dd2da