VDB

CNVD-2021-29741

CNVD-2021-29741 PUBLISHED CVSS 5.599999904632568 MEDIUM

Handlebars是一款语义化的Web模板系统。 Handlebars 4.7.7之前版本存在远程代码执行漏洞,该漏洞源于在选择某些编译选项来编译来自非受信任的源的模板时,Handlebars容易受到远程代码执行(Remote Code Execution, RCE)的攻击。目前没有详细漏洞细节提供。

Risk Scores

CVSS 3.1
5.599999904632568
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C

Affected Products

VendorProductVersions
n/ahandlebarsunspecified

Timeline

  • Feb 15, 2017 CVE Published
  • Oct 23, 2018 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›