Contribsys: >> Sidekiq >> 6.5.8 Security Vulnerabilities
Cross Site Scripting vulnerability in Contribsys Sidekiq v.6.5.8 allows a remote attacker to obtain sensitive information via a crafted URL to the filter functions.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-03-01
Cross Site Scripting vulnerability in Contribsys Sidekiq v.6.5.8 allows a remote attacker to obtain sensitive information via a crafted payload to the uniquejobs function.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-03-01
Versions of the package sidekiq before 7.1.3 are vulnerable to Denial of Service (DoS) due to insufficient checks in the dashboard-charts.js file. An attacker can exploit this vulnerability by manipulating the localStorage value which will cause excessive polling requests.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-09-14