AI PRP: Jupyter Notebook Exposed Ui RCE

[JamesFoxxx]

it would be awesome if you let me improve this plugin, instead of current response body checking, I want to check if it is possible to directly run code without many HTTP requests to check an exposed UI.

[maoning]

Hi @JamesFoxxx ,

Thanks for your request! This vulnerability is in scope for the reward program.

Could you make sure the RCE payload works with most versions of jupyter notebook? I have seen false negative in the current plugin in the past due to version differences.

• Please provide detailed vuln research
• Verify https://github.com/google/security-testbeds/blob/main/jupyter/exposed_ui/jupyter.yaml is still accurate
• Update jupyter notebook web fingerprints and provide an updater.sh script for it.
• Please submit our participation form and you can start working on the development.

Please keep in mind that the Tsunami Scanner Team will only be able to work at one issue at a time for each participant so please hold on the implementation work for any other requests you might have.

Thanks!

[JamesFoxxx]

@maoning I'm not familiar with writing web fingerprints because my knowledge in bash scripting is not enough and it can take a lot of my time to write a script in bash. if you give me a separate bounty for the web fingerprint I can ask my friend to write this part. ( I'll work with my friend internally so no need to any changes for you and I'll give the 500$ bounty to my friend after I receive the total bounty)
please let me know.

[maoning]

@JamesFoxxx sounds good, you can separate the fingerprint portion out.