Description Cross-site scripting (XSS) vulnerability in Ember.js 1.10.x before 1.10.1 and 1.11.x before 1.11.2. Remediation References CVE-2015-1866 Related Vulnerabilities Atlassian Confluence Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7415) WordPress Plugin PushEngage Web Push Notifications Cross-Site Scripting (1.5.8) Atlassian Jira CVE-2021-43947 Vulnerability (CVE-2021-43947) WordPress Plugin ThemeHigh WooCommerce Wishlist and Comparison Cross-Site Request Forgery (1.0.4) WordPress 5.4.x Directory Traversal (5.4 - 5.4.15) Severity Medium Classification CVE-2015-1866 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities