We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent bc3e9f0 commit e97ec3fCopy full SHA for e97ec3f
gems/sidekiq/CVE-2024-32887.yml
@@ -9,7 +9,7 @@ description: |
9
Reflected XSS in Sidekiq Web UI via the `/metrics` HTTP end-point and the
10
`substr` query param:
11
12
- https://{host}/sidekiq/metrics?substr=foot%22%3E%3Cscript%20src=%22{payload}
+ https://{host}/sidekiq/metrics?substr=foot%22%3E%3Cscript%20src=%22{payload}%22%20/%3E
13
14
cvss_v3: 5.5
15
unaffected_versions:
0 commit comments