CVE-2021-30151

Опубликовано: 06 апр. 2021

Источник: debian

Описание

Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.

Пакет	Статус	Версия исправления	Релиз	Тип
ruby-sidekiq	fixed	6.3.1+dfsg-1		package

https://github.com/mperham/sidekiq/issues/4852
https://github.com/mperham/sidekiq/commit/64f70339d1dcf50a55c00d36bfdb61d97ec63ed8 (v6.2.1)

CVE-2021-30151

CVSS3: 6.1

ubuntu

почти 5 лет назад

Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.

CVE-2021-30151

CVSS3: 5.5

redhat

больше 4 лет назад

Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.

CVE-2021-30151

CVSS3: 6.1

nvd

почти 5 лет назад

Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.

GHSA-grh7-935j-hg6w

CVSS3: 6.1

github

больше 4 лет назад

Cross-site Scripting in Sidekiq