Vulnerabilities > Handlebarsjs > Handlebars > 1.0.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-04 | CVE-2021-23383 | The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source. | 7.5 |
| 2021-04-12 | CVE-2021-23369 | Unspecified vulnerability in Handlebarsjs Handlebars The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source. | 7.5 |
| 2020-09-30 | CVE-2019-20920 | Code Injection vulnerability in Handlebarsjs Handlebars Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. | 6.8 |