Every CVE whose affected-product data names Emberjs Ember.js, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2013-4170 — CVSS 6.1 (medium): In general, Ember.js escapes or strips any user-supplied content before inserting it in strings that will be sent to innerHTML. However…
CVE-2015-1866 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Ember.js 1.10.x before 1.10.1 and 1.11.x before 1.11.2.
CVE-2015-7565 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Ember.js 1.8.x through 1.10.x, 1.11.x before 1.11.4, 1.12.x before 1.12.2, 1.13.x before…
CVE-2014-0013 — CVSS 5.4 (medium): Ember.js 1.0.x before 1.0.1, 1.1.x before 1.1.3, 1.2.x before 1.2.1, 1.3.x before 1.3.1, and 1.4.x before 1.4.0-beta.2 allows remote…
CVE-2014-0014 — CVSS 5.4 (medium): Ember.js 1.0.x before 1.0.1, 1.1.x before 1.1.3, 1.2.x before 1.2.1, 1.3.x before 1.3.1, and 1.4.x before 1.4.0-beta.2 allows remote…
CVE-2014-0046 — CVSS 2.6 (low): Cross-site scripting (XSS) vulnerability in the link-to helper in Ember.js 1.2.x before 1.2.2, 1.3.x before 1.3.2, and 1.4.x before…