VYPR

PyPI package

bokeh

pkg:pypi/bokeh

Vulnerabilities (1)

  • CVE-2026-21883Jan 8, 2026
    affected < 3.8.2fixed 3.8.2

    Bokeh is an interactive visualization library written in Python. In versions 3.8.1 and below, if a server is configured with an allowlist (e.g., dashboard.corp), an attacker can register a domain like dashboard.corp.attacker.com (or use a subdomain if applicable) and lure a victi