Ember.js

CVEs (2)

• CVE-2015-1866MedSep 20, 2017
  Emberjs

  Ember.js
  risk 0.40cvss 6.1epss 0.00

  Cross-site scripting (XSS) vulnerability in Ember.js 1.10.x before 1.10.1 and 1.11.x before 1.11.2.

• CVE-2014-0046Feb 27, 2014
  Emberjs

  Ember.js
  risk 0.00cvss —epss 0.00

  Cross-site scripting (XSS) vulnerability in the link-to helper in Ember.js 1.2.x before 1.2.2, 1.3.x before 1.3.2, and 1.4.x before 1.4.0-beta.6, when used in non-block form, allows remote attackers to inject arbitrary web script or HTML via the title attribute.