Updated advisory posts against rubysec/ruby-advisory-db@e97ec3f

postmodern · RubySec CI · commit 2a8cd9d1b265 · 2024-04-27T17:53:51.000Z
diff --git a/advisories/_posts/2024-04-26-CVE-2024-32887.md b/advisories/_posts/2024-04-26-CVE-2024-32887.md
@@ -15,7 +15,7 @@ advisory:
     Reflected XSS in Sidekiq Web UI via the `/metrics` HTTP end-point and the
     `substr` query param:
 
-        https://{host}/sidekiq/metrics?substr=foot%22%3E%3Cscript%20src=%22{payload}
+        https://{host}/sidekiq/metrics?substr=foot%22%3E%3Cscript%20src=%22{payload}%22%20/%3E
   cvss_v3: 5.5
   unaffected_versions:
   - "< 7.2.0"
