Reflected cross-site scripting (XSS) In sidekiq-cron
Description
Sidekiq-cron is vulnerable to a cross-site scripting (xss) vulnerability via crafted URL Sidekiq-cron thru 2.3.1, an open-source scheduling add-on for Sidekiq, is vulnerable to a cross-site scripting (xss) vulnerability via crafted URL being rended from cron.erb.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 rubygems | 2.4.0 |
Aliases
1. 2. 3. 4.
References
1. 2. 3. 4. 5.