CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2023-23630 – Cross-site (XSS) vulnerability with Express API in Eta
https://notcve.org/view.php?id=CVE-2023-23630
Eta is an embedded JS templating engine that works inside Node, Deno, and the browser. XSS attack - anyone using the Express API is impacted. The problem has been resolved. Users should upgrade to version 2.0.0. As a workaround, don't pass user supplied things directly to `res.render`. • https://github.com/eta-dev/eta/commit/5651392462ee0ff19d77c8481081a99e5b9138dd https://github.com/eta-dev/eta/releases/tag/v2.0.0 https://github.com/eta-dev/eta/security/advisories/GHSA-xrh7-m5pp-39r6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-25967
https://notcve.org/view.php?id=CVE-2022-25967
Versions of the package eta before 2.0.0 are vulnerable to Remote Code Execution (RCE) by overwriting template engine configuration variables with view options received from The Express render API. **Note:** This is exploitable only for users who are rendering templates with user-defined data. Las versiones del paquete eta anteriores a la 2.0.0 son vulnerables a la ejecución remota de código (RCE) al sobrescribir las variables de configuración del motor de plantilla con las opciones de visualización recibidas de la API de renderizado Express. **Nota:** Esto solo es explotable para usuarios que renderizan plantillas con datos definidos por el usuario. • https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/src/compile-string.ts%23L21 https://github.com/eta-dev/eta/blob/9c8e4263d3a559444a3881a85c1607bf344d0b28/src/file-handlers.ts%23L182 https://github.com/eta-dev/eta/commit/5651392462ee0ff19d77c8481081a99e5b9138dd https://security.snyk.io/vuln/SNYK-JS-ETA-2936803 • CWE-94: Improper Control of Generation of Code ('Code Injection') •