Количество 2
Количество 2
CVE-2023-50724
Resque (pronounced like "rescue") is a Redis-backed library for creating background jobs, placing those jobs on multiple queues, and processing them later. resque-web in resque versions before 2.1.0 are vulnerable to reflected XSS through the current_queue parameter in the path of the queues endpoint. This issue has been patched in version 2.1.0.
GHSA-r8xx-8vm8-x6wj
Resque vulnerable to Reflected Cross Site Scripting through pathnames
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-50724 Resque (pronounced like "rescue") is a Redis-backed library for creating background jobs, placing those jobs on multiple queues, and processing them later. resque-web in resque versions before 2.1.0 are vulnerable to reflected XSS through the current_queue parameter in the path of the queues endpoint. This issue has been patched in version 2.1.0. | CVSS3: 6.3 | 1% Низкий | около 2 лет назад |
| GHSA-r8xx-8vm8-x6wj Resque vulnerable to Reflected Cross Site Scripting through pathnames | CVSS3: 6.3 | 1% Низкий | около 2 лет назад |
Уязвимостей на страницу