Vulnerabilities > Squirrelly
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-21 | CVE-2024-40453 | Code Injection vulnerability in Squirrelly 9.0.0 squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varName. | 9.8 |
| 2021-05-14 | CVE-2021-32819 | Information Exposure vulnerability in Squirrelly 8.0.8 Squirrelly is a template engine implemented in JavaScript that works out of the box with ExpressJS. | 8.8 |