Moderate severity vulnerability that affects ejs

2017-11-30T23:15:05
ID GHSA-HWCF-PP87-7X6P
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:00

Description

nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection