Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2017/11/30 11:15 p.m.5 views

192.168.0.172 (=4.6.1), 2d-json-schema-editor-visual (>=1.0.2 <=1.0.7) +2088 more potentially affected by CVE-2017-1000188 via ejs (>=0.0.1 <=2.5.4)

ejs NPM version =0.0.1, =1.0.2, =0.0.1, =2.0.0-rc5, =0.1.0, =2.1.2, =0.1.0, =0.25.0, =0.4.5, =0.12.0-edge9, =2.1.5, =2.6.0 - @colmena/api =0.1.0 and more Source cves: CVE-2017-1000188 Source advisory: OSV:GHSA-HWCF-PP87-7X6P...

6.1CVSS6.3AI score0.01233EPSS
Exploits0
NVD
NVD
added 2017/11/17 3:29 a.m.13 views

CVE-2017-1000188

nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile resulting in code injection...

6.1CVSS6.4AI score0.01233EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/11/17 3:29 a.m.19 views

CVE-2017-1000188

nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile resulting in code injection...

6.1CVSS6.4AI score0.01233EPSS
Exploits0References2
CVE
CVE
added 2017/11/17 3:0 a.m.57 views

CVE-2017-1000188

CVE-2017-1000188 relates to nodejs-ejs: versions older than 2.5.5 are susceptible to a Cross-site Scripting (XSS) vulnerability in ejs.renderFile(), which can lead to code injection. This risk is described across multiple sources in the provided dataset. The available documents specify the vulner...

6.1CVSS6.3AI score0.01233EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2017/11/17 3:0 a.m.11 views

CVE-2017-1000188

nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile resulting in code injection...

6.1CVSS6.4AI score0.01233EPSS
Exploits0
Rows per page
Query Builder