CVE-2023-50724: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

December 21, 2023 (updated January 2, 2024)

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in resque.

References

github.com/advisories/GHSA-r8xx-8vm8-x6wj
github.com/resque/resque/commit/e8e2367fff6990d13109ec2483a456a05fbf9811
github.com/resque/resque/issues/1679
github.com/resque/resque/pull/1687
github.com/resque/resque/security/advisories/GHSA-r8xx-8vm8-x6wj

Detect and mitigate CVE-2023-50724 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →