CVE-2015-8861

2017-01-23T21:59:00
ID CVE-2015-8861
Type cve
Reporter cve@mitre.org
Modified 2020-04-22T12:54:00

Description

The handlebars package before 4.0.0 for Node.js allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging a template with an attribute that is not quoted.