Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Handlebars Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-20920)

Description

Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars templates or in a victim's browser (effectively serving as XSS).

Remediation

References

Related Vulnerabilities

Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-9591)

WordPress Plugin Knight Lab Timeline Cross-Site Scripting (3.6.6)

WordPress Plugin Events Manager Cross-Site Request Forgery (5.9.8.1)

WordPress Plugin WP Publication Archive 'file' Parameter Directory Traversal (2.3)

WordPress Plugin SPNbabble Cross-Site Request Forgery (1.4.1)

Severity

High

Classification

CVE-2019-20920 CWE-94 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:L

Tags

Missing Update Known Vulnerabilities