Lucene search
K

7 matches found

Github Security Blog
Github Security Blog
added 2024/02/13 6:34 p.m.32 views

XSS sidekiq-unique-jobs UI server vulnerability

Summary Cross site scripting XSS potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7. Specifically, this is a Reflected Server-Side, Non-Self, Cross Site Scripting vulnerability, considered a P3 on the BugCrowd taxonomy with the following categorization:...

7.1CVSS7.7AI score0.00525EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2024/02/13 6:34 p.m.45 views

GHSA-CMH9-RX85-XJ38 XSS sidekiq-unique-jobs UI server vulnerability

Summary Cross site scripting XSS potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7. Specifically, this is a Reflected Server-Side, Non-Self, Cross Site Scripting vulnerability, considered a P3 on the BugCrowd taxonomy with the following categorization:...

7.1CVSS8AI score0.0059EPSS
Exploits3References6
Debian CVE
Debian CVE
added 2023/04/05 12:0 a.m.42 views

CVE-2023-1892

Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...

9.6CVSS7.9AI score0.02742EPSS
Exploits1
Cvelist
Cvelist
added 2023/04/05 12:0 a.m.17 views

CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq

Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...

8.3CVSS9AI score0.02742EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/05 12:0 a.m.5 views

CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq

Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...

8.3CVSS8.6AI score0.02742EPSS
Exploits1References2
CVE
CVE
added 2023/04/05 12:0 a.m.64 views

CVE-2023-1892

CVE-2023-1892 is a reflected XSS in Sidekiq prior to version 7.0.8. Affected versions include 7.0.4 through 7.0.7. The vulnerability arises from unsafely reflected input (e.g., GET parameters like period) in Sidekiq endpoints, enabling injection of JavaScript that could be executed in an administ...

9.6CVSS8.5AI score0.02742EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/04/05 12:0 a.m.17 views

CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq

Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...

8.3CVSS8.5AI score0.02742EPSS
Exploits1References4
Rows per page
Query Builder