Vulnerabilities > EJS > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-11-17 CVE-2017-1000188 Cross-site Scripting vulnerability in EJS
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
network
low complexity
ejs CWE-79
6.1
6.1