RubySec

Providing security resources for the Ruby community

OSVDB-125676 (sidekiq): Sidekiq Gem for Ruby web/views/queue.erb CurrentMessagesInQueue Element Reflected XSS

ADVISORIES

GEM

sidekiq

PATCHED VERSIONS

  • >= 3.4.0

DESCRIPTION

XSS via queue name in Sidekiq::Web

RELATED

  • OSVDB-125677
Contact us @rubysec or open an issue on our GitHub repository.

Recent Advisories