VYPR

npm package

rendr

pkg:npm/rendr

Vulnerabilities (1)

  • CVE-2016-1000230higSep 1, 2020
    affected < 1.1.4fixed 1.1.4

    Affected versions of `rendr` are vulnerable to cross-site scripting when client side rendering is done inside a `_block`. Server side rendering is not affected and is properly escaped. ## Recommendation Update to version 1.1.4 or later.