4 matches found
GHSA-V5HP-35HW-CW5X XSS in client rendered block templates in rendr
Affected versions of rendr are vulnerable to cross-site scripting when client side rendering is done inside a block. Server side rendering is not affected and is properly escaped. Recommendation Update to version 1.1.4 or later...
XSS in client rendered block templates in rendr
Affected versions of rendr are vulnerable to cross-site scripting when client side rendering is done inside a block. Server side rendering is not affected and is properly escaped. Recommendation Update to version 1.1.4 or later...
Cross-site Scripting (XSS)
rendr-handlebars is vulnerable to cross-site scripting XSS attacks. This is because unsanitized data is passed to the client, allowing the attacks to be performed...
XSS in client rendered block templates
Overview Affected versions of rendr are vulnerable to cross-site scripting when client side rendering is done inside a block. Server side rendering is not affected and is properly escaped. Recommendation Update to version 1.1.4 or later. References - PR 61 - PR 513 - GitHub Advisory...