9 matches found
TencentOS Server 4: koji (TSSA-2025:0068)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0068 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Fedora: Security Advisory (FEDORA-2024-825c52d96f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-e253f0b07c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
the-new-hotness (=0.13.0) potentially affected by CVE-2024-9427 via koji (=1.20.1)
koji PYPI version =1.20.1 is affected by a known vulnerability. The following packages have a transitive dependency on koji and may be impacted: - the-new-hotness =0.13.0 Source cves: CVE-2024-9427 Source advisory: OSV:GHSA-G2VG-8HFG-79VJ...
CVE-2024-9427
A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a change in Koji due to existing XSS protections in the code...
the-new-hotness (=0.13.0) potentially affected by CVE-2024-9427 via koji (=1.20.1)
koji PYPI version =1.20.1 is affected by a known vulnerability. The following packages have a transitive dependency on koji and may be impacted: - the-new-hotness =0.13.0 Source cves: CVE-2024-9427 Source advisory: SNYK:PYTHON-KOJI-8549258...
CVE-2024-9427 Koji: escape html tag characters in the query string
A vulnerability in Koji was found. An unsanitized input allows for an XSS attack. Javascript code from a malicious link could be reflected in the resulting web page. It is not expected to be able to submit an action or make a change in Koji due to existing XSS protections in the code...
Fedora 41 : koji (2024-825c52d96f)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-825c52d96f advisory. Update to 1.35.1. Includes fix for CVE-2024-9427 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Fedora: Security Advisory (FEDORA-2024-ef4911442d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...