ipycache - Remote Code Execution (RCE) - Fix:

rossant / ipycache

Defines a %%cache cell magic in the IPython notebook to cache results of long-lasting computations in a persistent pickle file

BSD 3-Clause "New" or "Revised" License

138 stars 35 forks source link

ipycache - Remote Code Execution (RCE) - Fix: #50

Closed JamieSlome closed 10 months ago

JamieSlome commented 4 years ago

https://github.com/adi928 fixed the vulnerability associated with Remote Code Execution (RCE). This fix is being submitted on behalf of https://github.com/adi928 - they have been awarded $25 for fixing the vulnerability through the huntr bug bounty program. Think you could fix a vulnerability like this - get involved (https://huntr.dev). Q | A Version Affected | ALL Bug Fix | YES Further References | https://github.com/418sec/ipycache/pull/3

JamieSlome commented 4 years ago

@rossant - any updates on this?