CVE-2016-3942

Name of the Vulnerable Software and Affected Versions: jsrender versions prior to 0.9.74

Description: The issue allows for remote code execution when jsrender is used with server-delivered client-side templates that dynamically embed user input. This can be exploited through specific template syntax, such as the for loop and conditional statements, which can lead to the execution of arbitrary code.

Recommendations: Update to version 0.9.74 or later.