Sidekiq up to and including 5.1.3 and 6.x up to and including 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
contribsys sidekiq |
||
debian debian linux 9.0 |