CVE-2025-67202

Published May 7th, 2026

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

Sidekiq-cron thru 2.3.1, an open-source scheduling add-on for Sidekiq, is vulnerable to a cross-site scripting (xss) vulnerability via crafted URL being rended from cron.erb.

sidekiq-cron/sidekiq-cron

Scheduler / Cron for Sidekiq jobs

GitHub

1.94K