Lucene search
EjsEjs*
3 matches found
CVE-2017-1000228
nodejs ejs versions older than 2.5.3 is vulnerable to remote code execution due to weak input validation in ejs.renderFile() function
10CVSS9.7AI score0.0718EPSS
CVE-2017-1000189
nodejs ejs version older than 2.5.5 is vulnerable to a denial-of-service due to weak input validation in the ejs.renderFile()
7.5CVSS7.3AI score0.00913EPSS
CVE-2017-1000188
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
6.1CVSS6.3AI score0.00234EPSS