Vulnerabilities > Handlebarsjs > Handlebars > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-05-04 CVE-2021-23383 The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.
network
low complexity
handlebarsjs netapp
critical
 9.8
9.8
2021-04-12 CVE-2021-23369 Unspecified vulnerability in Handlebarsjs Handlebars
The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source.
network
low complexity
handlebarsjs
critical
 9.8
9.8