Handlebarsjs: >> Handlebars >> 3.0.8 Security Vulnerabilities
The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.
CVSS Score
5.6
EPSS Score
0.033
Published
2021-05-04
The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source.
CVSS Score
5.6
EPSS Score
0.018
Published
2021-04-12