Vulnerabilities > Squirrelly

DATE CVE VULNERABILITY TITLE RISK
2024-08-21 CVE-2024-40453 Code Injection vulnerability in Squirrelly 9.0.0
squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varName.
network
low complexity
squirrelly CWE-94
critical
9.8
2021-05-14 CVE-2021-32819 Unspecified vulnerability in Squirrelly 8.0.8
Squirrelly is a template engine implemented in JavaScript that works out of the box with ExpressJS.
network
low complexity
squirrelly
8.8