GHSA-Q2C6-C6PM-G3GH — Vulnetix

GHSA-Q2C6-C6PM-G3GH PUBLISHED CVSS 8.600000381469727 HIGH

Arbitrary Code Execution in handlebars

Risk Scores

CVSS v4.0

8.600000381469727

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
npm	handlebars	0, 4.0.0, 0

Timeline

Aug 31, 2020 CVE Updated
Sep 4, 2020 CVE Published

References

https://www.npmjs.com/advisories/1324 url
GitHub Advisory GHSA-q2c6-c6pm-g3gh vendor-advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›