Huawei EulerOS: Security Advisory for python-lxml (EulerOS-SA-2024-2427)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OESA-2024-1749 python-lxml security update

The lxml XML toolkit is a Pythonic binding for the C libraries libxml2 and libxslt. \ It is unique in that it combines the speed and XML feature completeness of these libraries with \ the simplicity of a native Python API, mostly compatible but superior to the well-known ElementTree API. \ The...

XML Entity Expansion (XXE)

ebookmeta is vulnerable to an XML External Entity XXE vulnerability. The vulnerability is due to improper handling of crafted XML input via the lxml dependency in the ebookmeta.getmetadata function, allowing attackers to access sensitive information or cause a Denial of Service DoS...

ebookmeta XML External Entity vulnerability

An XML External Entity XXE vulnerability in the ebookmeta.getmetadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...

GHSA-WHF4-FPJ8-PGG8 ebookmeta XML External Entity vulnerability

An XML External Entity XXE vulnerability in the ebookmeta.getmetadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...

ebookmeta XML External Entity vulnerability

An XML External Entity XXE vulnerability in the ebookmeta.getmetadata function via lxml dependency allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...

CVE-2024-36827

An XML External Entity XXE vulnerability in the ebookmeta.getmetadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service DoS via crafted XML input...

ebookmeta Security Vulnerabilities

ebookmeta is a Python library for managing metadata for epub2, epub3, and fb2 files by Dmitrii Personal Developer. A security vulnerability exists in ebookmeta versions prior to v1.2.8, which stems from an XML External Entity vulnerability in the ebookmeta.getmetadata function that could allow an...

CVE-2024-36827

The vulnerability CVE-2024-36827 affects the ebookmeta Python library, specifically the ebookmeta.get_metadata function. It is an XML External Entity (XXE) vulnerability present in versions prior to v1.2.8, allowing attackers to access sensitive information or cause a Denial of Service (DoS) via ...