logo

Advisories

Weaknesses

Fixes

Requirements

Compliance

GHSA-vxp4-25qp-86qh ember

Package

Manager: npm
Name: ember
Vulnerable Version: <0

Severity

Level: Medium

CVSS v3.1: N/A

CVSS v4.0: N/A

EPSS: N/A pctlN/A

Details

Moderate severity vulnerability that affects ember Withdrawn, accidental duplicate publish. Cross-site scripting (XSS) vulnerability in Ember.js 1.8.x through 1.10.x, 1.11.x before 1.11.4, 1.12.x before 1.12.2, 1.13.x before 1.13.12, 2.0.x before 2.0.3, 2.1.x before 2.1.2, and 2.2.x before 2.2.1 allows remote attackers to inject arbitrary web script or HTML.

Metadata

Created: 2017-10-24T18:33:36Z
Modified: 2020-06-17T15:15:14Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2017/10/GHSA-vxp4-25qp-86qh/GHSA-vxp4-25qp-86qh.json
CWE IDs: []
Alternative ID: N/A
Finding: N/A
Auto approve: 0