icon

We found results for “

WS-2019-0332

Good to know:

icon
icon

Date: November 17, 2019

Arbitrary Code Execution vulnerability found in handlebars before 4.5.3. Lookup helper fails to validate templates. Attack may submit templates that execute arbitrary JavaScript in the system.It is due to an incomplete fix for a WS-2019-0331.

Language: JS

Severity Score

Severity Score

Top Fix

icon

Upgrade Version

Upgrade to version handlebars - 4.5.3

Learn More

CVSS v2

Base Score:
Access Vector (AV):
Access Complexity (AC):
Authentication (AU):
Confidentiality (C):
Integrity (I):
Availability (A):
Additional information:

Do you need more information?

Contact Us