0.001 Low
EPSS
Percentile
31.2%
edge.js is vulnerable to cross-site scripting. A lack of validation of type when an attacker inputs an array regardless of the use of {{ }} instead of a string allows an attacker to inject and execute malicious script.
{{ }}
github.com/edge-js/edge/commit/fa2c7fde86327aeae232752e89a6e37e2e469e21