{"id":"PYSEC-2017-47","details":"Cross-site request forgery in the REST API in IPython 2 and 3.","aliases":["CVE-2015-5607","GHSA-7fc2-rm35-2pp7"],"modified":"2023-11-01T04:46:12.825381Z","published":"2017-09-20T16:29:00Z","references":[{"type":"FIX","url":"https://github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0"},{"type":"FIX","url":"https://github.com/ipython/ipython/commit/1415a9710407e7c14900531813c15ba6165f0816"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1243842"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2015/07/21/3"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162936.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162671.html"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-7fc2-rm35-2pp7"}],"affected":[{"package":{"name":"ipython","ecosystem":"PyPI","purl":"pkg:pypi/ipython"},"ranges":[{"type":"GIT","repo":"https://github.com/ipython/ipython","events":[{"introduced":"0"},{"fixed":"a05fe052a18810e92d9be8c1185952c13fe4e5b0"},{"fixed":"1415a9710407e7c14900531813c15ba6165f0816"}]},{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.2.1"}]}],"versions":["0.10","0.10.1","0.10.2","0.11","0.12","0.12.1","0.13","0.13.1","0.13.2","0.6.10","0.6.11","0.6.12","0.6.13","0.6.14","0.6.15","0.6.4","0.6.5","0.6.6","0.6.7","0.6.8","0.6.9","0.7.0","0.7.1","0.7.1.fix1","0.7.2","0.7.3","0.7.4.svn.r2010","0.8.0","0.8.1","0.8.2","0.8.3","0.8.4","0.9","0.9.1","1.0.0","1.1.0","1.2.0","1.2.1","2.0.0","2.1.0","2.2.0","2.3.0","2.3.1","2.4.0","2.4.1","3.0.0","3.1.0","3.2.0"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/ipython/PYSEC-2017-47.yaml"}}],"schema_version":"1.7.3"}