Headline
GHSA-g53g-q539-93cv: Server-Side Request Forgery in scout-browser
Pypi package scout-browser (GitHub repository clinical-genomics/scout) prior to v4.52 is vulnerable to server-side request forgery. An attacker could make the application perform arbitrary requests to steal cookies, request access to private areas, or lead to cross-site scripting.
Server-Side Request Forgery in scout-browser
High severity GitHub Reviewed Published May 6, 2022 • Updated May 24, 2022