Описание
Cross-site Scripting in Sidekiq
Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.
Пакеты
Наименование
sidekiq
rubygems
Затронутые версииВерсия исправления
< 5.2.0
5.2.0
Наименование
sidekiq
rubygems
Затронутые версииВерсия исправления
>= 6.0.0, < 6.2.1
6.2.1
Связанные уязвимости
CVSS3: 6.1
ubuntu
почти 5 лет назад
Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.
CVSS3: 5.5
redhat
больше 4 лет назад
Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.
CVSS3: 6.1
nvd
почти 5 лет назад
Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.
CVSS3: 6.1
debian
почти 5 лет назад
Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue n ...