Security Advisory

CVE-2017-1000188

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-11-17 03:00:00

Last updated 2024-08-05 21:53:07

Assigner mitre

State PUBLISHED

nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection