VDB
KO
HIGH 8.2

PYSEC-2026-750

Server-Side Request Forgery in scout-browser

Details

Pypi package scout-browser (GitHub repository clinical-genomics/scout) prior to v4.52 is vulnerable to server-side request forgery. An attacker could make the application perform arbitrary requests to steal cookies, request access to private areas, or lead to cross-site scripting.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / scout-browser
Introduced in: 0 Fixed in: 4.52
Fix pip install --upgrade 'scout-browser>=4.52'

References