Handlebars.js Project - Handlebars.js CVE

Filtered by vendor Handlebars.js Project Subscribe

Filtered by product Handlebars.js

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-19919	2 Handlebars.js Project, Tenable	2 Handlebars.js, Tenable.sc	2022-06-03	7.5 HIGH	9.8 CRITICAL
Versions of handlebars prior to 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution. Templates may alter an Object's __proto__ and __defineGetter__ properties, which may allow an attacker to execute arbitrary code through crafted payloads.

Vulnerabilities (CVE)