Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq
36Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendcvss 8.3epss 2.7%
exploitation probability
2.7%top 15% of all CVEs
observed exploitation
nono source reports it
Cross-site Scripting (XSS) - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
Affected products
sidekiq · sidekiq/sidekiq