7 matches found
XSS sidekiq-unique-jobs UI server vulnerability
Summary Cross site scripting XSS potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7. Specifically, this is a Reflected Server-Side, Non-Self, Cross Site Scripting vulnerability, considered a P3 on the BugCrowd taxonomy with the following categorization:...
GHSA-CMH9-RX85-XJ38 XSS sidekiq-unique-jobs UI server vulnerability
Summary Cross site scripting XSS potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7. Specifically, this is a Reflected Server-Side, Non-Self, Cross Site Scripting vulnerability, considered a P3 on the BugCrowd taxonomy with the following categorization:...
CVE-2023-1892
Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...
CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq
Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...
CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq
Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...
CVE-2023-1892
CVE-2023-1892 is a reflected XSS in Sidekiq prior to version 7.0.8. Affected versions include 7.0.4 through 7.0.7. The vulnerability arises from unsafely reflected input (e.g., GET parameters like period) in Sidekiq endpoints, enabling injection of JavaScript that could be executed in an administ...
CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq
Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...