writeups.xyz / Leaking Jupyter instance auth token chaining CVE-2023-39968, CVE-2024-22421 and a chromium bug

Submitter : c2a

Date: 30 August 2023

Bounty : undisclosed

Vulnerabilities :

• Client-Side Path Traversal
• Open Redirect

Programs :

• Jupyter
• Google (Chromium)

Authors :

• Davit (@Davwwwx)

Link :
https://blog.xss.am/2023/08/cve-2023-39968-jupyter-token-leak/