This repository has been archived by the owner on Mar 1, 2024. It is now read-only.
Prototype Pollution in handlebars #460
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Prototype Pollution in handlebars The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.
The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source.
Update to 4.7.7
The text was updated successfully, but these errors were encountered: