Contribsys: >> Sidekiq >> 7.0.4 Security Vulnerabilities
Versions of the package sidekiq before 7.1.3 are vulnerable to Denial of Service (DoS) due to insufficient checks in the dashboard-charts.js file. An attacker can exploit this vulnerability by manipulating the localStorage value which will cause excessive polling requests.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-09-14
Cross-site Scripting (XSS) - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8.
CVSS Score
8.3
EPSS Score
0.533
Published
2023-04-21