CVE-2021-23443
The CVE-2021-23443 entry applies to edge.js prior to version 5.3.2, where a type confusion vulnerability can bypass input sanitization when the rendered input is an array (not a string or SafeValue), even with {{ }} usage. Affected component: edge.js template engine. Impact: cross-site scripting ...