Description
Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars templates or in a victim's browser (effectively serving as XSS).
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.npmjs.com/advisories/1316
Third Party Advisory x_refsource_misc
https://www.npmjs.com/advisories/1324
Third Party Advisory x_refsource_misc
https://snyk.io/vuln/SNYK-JS-HANDLEBARS-534478
Scores
CVSS v3
8.1
EPSS
0.0319
EPSS Percentile
86.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:L
Details
CWE
CWE-94
Status
published
Products (2)
handlebarsjs/handlebars
< 3.0.8
npm/handlebars
0 - 3.0.8npm
Published
Sep 30, 2020
Tracked Since
Feb 18, 2026