RubygemsResearch

Sha256: 34a30ca17dc9b5cb06af0fd7e3c48539e44ae12aedc9fbda7cfcb9437d5b369f

Contents?: true

Size: 566 Bytes

Versions: 6

Compression:

Stored size: 566 Bytes

---
gem: handlebars-source
osvdb: 131671
url: https://blog.srcclr.com/handlebars_vulnerability_research_findings/
title: handlebars.js - quoteless attributes in templates can lead to XSS
date: 2015-08-24
description: |
  The upstream 'handlebars' node.js module was found to not properly escape
  equals (=) signs, leading to possible content injection via attributes
  in templates.

  Example:
  * Template: <a href={{foo}}/>
  * Input: { 'foo' : 'test.com onload=alert(1)'}
  * Rendered result: <a href=test.com onload=alert(1)/>
patched_versions:
  - ">= 4.0.0"

Version data entries

6 entries across 6 versions & 2 rubygems

Version	Path
bundler-audit-0.7.0.1	data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml
bundler-budit-0.6.2	data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml
bundler-budit-0.6.1	data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml
bundler-audit-0.6.1	data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml
bundler-audit-0.6.0	data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml
bundler-audit-0.5.0	data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml