UBUNTU-CVE-2025-6713

An unauthorized user may leverage a specially crafted aggregation pipeline to access data without proper authorization due to improper handling of the $mergeCursors stage in MongoDB Server. This may lead to access to data without further authorisation. This issue affects MongoDB Server MongoDB...

SidekiqUniqueJobs Cross-Site Scripting Vulnerability

SidekiqUniqueJobs is a tool for preventing duplicate Sidekiq jobs. A cross-site scripting vulnerability exists in SidekiqUniqueJobs versions prior to 8.0.7 and prior to 7.1.33, which stems from the presence of a cross-site scripting vulnerability...