As Redis · As Redis · CVE-2021-41172
**Name of the Vulnerable Software and Affected Versions**
AS Redis versions prior to 0.5
**Description**
The issue arises from insufficient input validation and sanitization via Redis server configuration, leading to Self-XSS in the plugin configuration. This results in code execution.
**Recommendations**
For versions prior to 0.5, update to version 0.5 to resolve the issue. As a temporary workaround, consider restricting access to the Redis server configuration to minimize the risk of exploitation.