Description

Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars templates or in a victim's browser (effectively serving as XSS).

Remediation

References

https://snyk.io/vuln/SNYK-JS-HANDLEBARS-534478

https://www.npmjs.com/advisories/1316

https://www.npmjs.com/advisories/1324

Related Vulnerabilities

CVE-2019-20921 Vulnerability in maven package org.webjars.bowergithub.thdoan:bootstrap-select

CVE-2022-21126 Vulnerability in maven package com.github.samtools:htsjdk

CVE-2023-46502 Vulnerability in maven package org.opencrx:opencrx-core

CVE-2019-17572 Vulnerability in maven package org.apache.rocketmq:rocketmq-broker

CVE-2017-16216 Vulnerability in npm package tencent-server

Severity

Critical

Classification

CWE-94 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:L

Tags

Third Party Advisory Exploit