Vulnerability in Jupyter Nbgrader

CVE-2025-23205

nbgrader is a system for assigning and grading notebooks. Enabling frame-ancestors: 'self' grants any JupyterHub user the ability to extract formgrader content by sending malicious links to users with access to formgrader, at least when us…

EPSS: 0.005 (36.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References