RubyGems package
delayed_job_web
pkg:gem/delayed_job_web
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-12097 | — | >= 1.2.9, < 1.4.2 | 1.4.2 | Jan 19, 2018 | An exploitable cross site scripting (XSS) vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on the victim's browser. An a |
- CVE-2017-12097Jan 19, 2018affected >= 1.2.9, < 1.4.2fixed 1.4.2
An exploitable cross site scripting (XSS) vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on the victim's browser. An a