Vulnerabilities > Handlebarsjs > High

DATE CVE VULNERABILITY TITLE RISK
2020-09-30 CVE-2019-20922 Resource Exhaustion vulnerability in Handlebarsjs Handlebars
Handlebars before 4.4.5 allows Regular Expression Denial of Service (ReDoS) because of eager matching.
network
low complexity
handlebarsjs CWE-400
7.5
7.5
2020-09-30 CVE-2019-20920 Code Injection vulnerability in Handlebarsjs Handlebars
Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution.
network
high complexity
handlebarsjs CWE-94
8.1
8.1