Lucene search
GoogleOSV:GHSA-8XM3-GM7C-5FJXHistoryMay 14, 2022 - 3:07 a.m.
Ember.js Cross-site Scripting vulnerability
2022-05-1403:07:30
Google
osv.dev
9
ember.js
cross-site scripting
vulnerability
handlebars variable
remote attackers
templates
EPSS
0.001
Percentile
28.6%
Ember.js 1.0.x before 1.0.1, 1.1.x before 1.1.3, 1.2.x before 1.2.1, 1.3.x before 1.3.1, and 1.4.x before 1.4.0-beta.2 allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging an application that contains templates whose context is set to a user-supplied primitive value and also contain the {{this}} special Handlebars variable.
Related
prion
prion
Cross site scripting
2018-02-15 21:29:00
cve
cve
CVE-2014-0013
2018-02-15 21:29:00
cvelist
cvelist
CVE-2014-0013
2018-02-15 21:00:00
rubygems
rubygems
github
github
Ember.js Cross-site Scripting vulnerability
2022-05-14 03:07:30
nvd
nvd
CVE-2014-0013
2018-02-15 21:29:00