The ejs (aka Embedded JavaScript templates) package before 3.1.10 for
Node.js lacks certain pollution protection.
github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5
github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5 (v3.1.10)
github.com/mde/ejs/compare/v3.1.9...v3.1.10
launchpad.net/bugs/cve/CVE-2024-33883
nvd.nist.gov/vuln/detail/CVE-2024-33883
security-tracker.debian.org/tracker/CVE-2024-33883
www.cve.org/CVERecord?id=CVE-2024-33883