Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-23383 PoC — handlebars 安全漏洞

Source
https://github.com/fazilbaig1/CVE-2021-23383
Associated Vulnerability
Title:handlebars 安全漏洞 (CVE-2021-23383)
Description:handlebars是一款语义化的Web模板系统。 handlebars 4.7.7之前版本存在安全漏洞,该漏洞源于当选择某些编译选项来编译来自不可信源的模板时,容易受到原型污染的影响。
Description
The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.
Readme
# CVE-2021-23383
The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.
File Snapshot

 [4.0K]  /data/pocs/3f5a9bc36f4977e4ff6d42ea06dd22ffebc370a1
├── [ 990]  handlebars_exploit.py
├── [ 971]  handlebars_scanner.py
└── [ 186]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.