This page collects WhisperX intelligence signals tagged #data-science. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical security update for the popular data app framework Streamlit patches a severe Server-Side Request Forgery (SSRF) vulnerability that could expose Windows users' NTLM credentials. The flaw, tracked as CVE-2026-33682 (GHSA-7p48-42j8-8846), specifically affects Streamlit deployments on Windows systems. An unauth...
A critical path traversal vulnerability in the popular nbconvert tool allows attackers to write arbitrary files anywhere on a victim's filesystem. The flaw, tracked as CVE-2026-39377 and GHSA-4c99-qj7h-p3vg, resides in how nbconvert processes cell attachment filenames within Jupyter notebooks. By crafting a malicious f...