aurelia-templating-resources is vulnerable to cross-site scripting. The vulnerability exists because of the use of insecure default HTML sanitizer which only attempts to filter SCRIPT elements.
CPE | Name | Operator | Version |
---|---|---|---|
aurelia-templating-resources | le | 1.14.1 | |
aurelia-templating-resources | le | 1.14.1 | |
aurelia-templating-resources | le | 1.1.1 |