Homepage
About Snyk

jupyterlab-lsp@5.0.0b1 vulnerabilities

Coding assistance for JupyterLab with Language Server Protocol

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the jupyterlab-lsp package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Relative Path Traversal

jupyterlab-lsp is a Coding assistance for JupyterLab with Language Server Protocol

Affected versions of this package are vulnerable to Relative Path Traversal due configured file system without access control on the operating system level and jupyter-server instances exposed to non-trusted network. An unauthorised attacker could gain access and modify the file system beyond the jupyter root directory.

How to fix Relative Path Traversal?

Upgrade jupyterlab-lsp to version 5.0.2 or higher.

[,5.0.2)
Go back to all versions of this package