Koji · Koji · CVE-2024-9427
**Name of the Vulnerable Software and Affected Versions**
Koji (affected versions not specified)
**Description**
The issue is related to improper neutralization of input during web page generation, allowing for a reflected XSS attack. An unsanitized input can lead to an XSS attack, where harmful JavaScript code from a malicious link could be reflected in the resulting web page. However, due to existing XSS protections in the code, it is not expected to be able to submit an action or make a change in Koji.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.