Lucene search
HistoryApr 21, 2023 - 5:15 a.m.
CVE-2023-1892
cross-site scripting
reflected
github repository
sidekiq/sidekiq
7.0.8
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
0.023 Low
EPSS
Percentile
89.7%
Cross-site Scripting (XSS) - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8.
Affected configurations
Node
contribsyssidekiqRange7.0.4–7.0.8
Related
huntr
huntr
Reflected XSS on Sidekiq through multiples endpoints via GET parameter "period"
2023-04-02 21:39:17
osv
osv
sidekiq vulnerable to cross-site scripting
2023-04-21 06:30:19
CVE-2023-1892
2023-04-21 05:15:07
XSS sidekiq-unique-jobs UI server vulnerability
2024-02-13 18:34:16
github
github
sidekiq vulnerable to cross-site scripting
2023-04-21 06:30:19
XSS sidekiq-unique-jobs UI server vulnerability
2024-02-13 18:34:16
debiancve
debiancve
CVE-2023-1892
2023-04-21 05:15:07
ubuntucve
ubuntucve
CVE-2023-1892
2023-04-21 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2023-04-24 09:21:11
cvelist
cvelist
CVE-2023-1892 Cross-site Scripting (XSS) - Reflected in sidekiq/sidekiq
2023-04-05 00:00:00
redhatcve
redhatcve
CVE-2023-1892
2023-04-21 12:57:23
nuclei
nuclei
Sidekiq < 7.0.8 - Cross-Site Scripting
2024-04-25 10:42:58
cve
cve
CVE-2023-1892
2023-04-21 05:15:07
prion
prion
Cross site scripting
2023-04-21 05:15:00
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
0.023 Low
EPSS
Percentile
89.7%
Related for NVD:CVE-2023-1892