OSVDB-125678: XSS via msg.display_class element

April 21, 2015

XSS via job arguments display class in Sidekiq::Web (web/views/queue.erb).

References

github.com/mperham/sidekiq/commit/3056a5ac96376038c1951fab2a3524f878c61709
github.com/mperham/sidekiq/pull/2309

Code Behaviors & Features

Detect and mitigate OSVDB-125678 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →