Security Advisory

CVE-2023-50724

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-21 14:50:29

Last updated 2024-08-27 15:02:43

Assigner GitHub_M

State PUBLISHED

Description

Resque (pronounced like "rescue") is a Redis-backed library for creating background jobs, placing those jobs on multiple queues, and processing them later. resque-web in resque versions before 2.1.0 are vulnerable to reflected XSS through the current_queue parameter in the path of the queues endpoint. This issue has been patched in version 2.1.0.

← Browse all CVEs View on cve.org ↗