CVE-2026-33587 - Remote Code Execution (RCE) via Server-Side Template Injection (SSTI)
CVE ID :CVE-2026-33587 Published : May 7, 2026, 11:16 a.m. | 22 minutes ago Description :Lack of user input sanitisation in Open Notebook v1.8.3 allows the application user to execute Python code (and subsequently OS commands) on the docker container via Server-Side Template Injection (SSTI) f
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] That Meaningless Stress After a Deploy
- [CYBER] ecpptv3 Exam in 3–4 Days —
- [CYBER] CVE-2026-32683 - EZVIZ Cloud API Eavesdropping Vulnerability
- [CYBER] CVE-2026-3828 - Hikvision Switch Remote Command Execution Vulnerability
- [CYBER] CVE-2026-1749 - HikCentral Professional Unauthenticated Admin Privilege Escalation
- [CYBER] Schools reach out to Canvas hackers as breach hits US classrooms, source says