Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-23369 PoC — handlebars 安全漏洞

Source
https://github.com/fazilbaig1/CVE-2021-23369
Associated Vulnerability
Title:handlebars 安全漏洞 (CVE-2021-23369)
Description:handlebars是一款语义化的Web模板系统。 handlebars 4.7.7版本之前存在安全漏洞,该漏洞源于在选择某些编译选项来编译来自不受信任的源的模板时,handlebars容易受到远程代码执行(Remote Code Execution, RCE)的攻击。
Description
Handlebars CVE-2021-23369 Vulnerability
Readme
# CVE-2021-23369
Handlebars CVE-2021-23369 Vulnerability

pip install requests

Enter the Url : 
Vulnerability Description
The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source.
File Snapshot

 [4.0K]  /data/pocs/898a973334063012e789e842e40fd510ac3db07e
├── [1.3K]  handlebars_exploit.py
├── [ 545]  handlebars_scanner.py
└── [ 300]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.