Filtered by vendor Resque-scheduler Project
Subscribe
Filtered by product Resque-scheduler
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-44303 | 1 Resque-scheduler Project | 1 Resque-scheduler | 2024-02-28 | N/A | 6.1 MEDIUM |
Resque Scheduler version 1.27.4 is vulnerable to Cross-site scripting (XSS). A remote attacker could inject javascript code to the "{schedule_job}" or "args" parameter in /resque/delayed/jobs/{schedule_job}?args={args_id} to execute javascript at client side. |