Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-23383

CVSSv4: NA | CVSSv3: 9.8 | CVSSv2: 7.5 | VMScore: 1000 | EPSS: 0.03326 | KEV: Not Included
Published: 04/05/2021 Updated: 21/11/2024

Vulnerability Summary

The package handlebars prior to 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

handlebarsjs handlebars

netapp e-series performance analyzer -

Vendor Advisories

Red Hat: Critical: Red Hat Process Automation Manager 7.13.2 security update
Synopsis Critical: Red Hat Process Automation Manager 7132 security update Type/Severity Security Advisory: Critical Topic An update is now available for Red Hat Process Automation ManagerRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring System (CVSS) base score, which gi ...

Github Repositories

https://github.com/dn9uy3n/Check-CVE-2021-23383

Check the conditions for exploiting CVE-2021-23383 through the handlebars library version assessment.

Check-CVE-2021-23383 Check the conditions for exploiting CVE-2021-23383 through the handlebars library version assessment

https://github.com/fazilbaig1/CVE-2021-23383

The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.

CVE-2021-23383 The package handlebars before 477 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source

References

CWE-1321https://access.redhat.com/errata/RHSA-2023:1334https://nvd.nist.govhttps://github.com/dn9uy3n/Check-CVE-2021-23383https://www.first.org/epsshttps://github.com/handlebars-lang/handlebars.js/commit/f0589701698268578199be25285b2ebea1c1e427https://security.netapp.com/advisory/ntap-20210618-0007/https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1279031https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1279032https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1279030https://snyk.io/vuln/SNYK-JS-HANDLEBARS-1279029https://github.com/handlebars-lang/handlebars.js/commit/f0589701698268578199be25285b2ebea1c1e427https://security.netapp.com/advisory/ntap-20210618-0007/https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1279031https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1279032https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1279030https://snyk.io/vuln/SNYK-JS-HANDLEBARS-1279029
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
XML external entityXSSCVE-2024-11335CVE-2025-26465adthriveCVE-2024-12069googleCVE-2024-13405apptivo business site crmmovable type (8.4.x series)code injectionCVE-2024-11778CVE-2025-0108
Home
/
Search Results
/
CVE-2021-23383
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook