Vulnerabilities > Contribsys > Sidekiq > 7.0.4

DATE CVE VULNERABILITY TITLE RISK
2023-09-14 CVE-2023-26141 Insufficient Verification of Data Authenticity vulnerability in Contribsys Sidekiq
Versions of the package sidekiq before 7.1.3 are vulnerable to Denial of Service (DoS) due to insufficient checks in the dashboard-charts.js file.
network
low complexity
contribsys CWE-345
4.9
4.9
2023-04-21 CVE-2023-1892 Unspecified vulnerability in Contribsys Sidekiq 7.0.4
Cross-site Scripting (XSS) - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8.
network
low complexity
contribsys
critical
 9.6
9.6