Vulnerabilities > Handlebars JS Project

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-20	CVE-2019-19919	Versions of handlebars prior to 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution. network low complexity handlebars-js-project tenable critical	9.8
2017-01-23	CVE-2015-8861	Cross-site Scripting vulnerability in Handlebars.Js Project Handlebars.Js The handlebars package before 4.0.0 for Node.js allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging a template with an attribute that is not quoted. network low complexity handlebars-js-project CWE-79	6.1

Vulnerabilities > Handlebars JS Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Handlebars JS Project"}]}