Lucene search
+L

4 matches found

VulnCheck KEV
VulnCheck KEV
added 2024/02/07 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-32819

Squirrelly is a template engine implemented in JavaScript that works out of the box with ExpressJS. Squirrelly mixes pure template data with engine configuration options through the Express render API. By overwriting internal configuration options remote code execution may be triggered in...

8.8CVSS7.8AI score0.59844EPSS
Exploits2References1
GithubExploit
GithubExploit
added 2021/06/12 5:9 p.m.287 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Squirrelly

CVE-2021-32819 CVE-2021-32819 : SquirrellyJS mixes pure templa...

8.8CVSS9.1AI score0.59844EPSS
Exploits2
Cvelist
Cvelist
added 2021/05/14 12:0 a.m.26 views

CVE-2021-32819 Remote code execution in squirrelly

Squirrelly is a template engine implemented in JavaScript that works out of the box with ExpressJS. Squirrelly mixes pure template data with engine configuration options through the Express render API. By overwriting internal configuration options remote code execution may be triggered in...

8CVSS9AI score0.59844EPSS
Exploits2References4
CVE
CVE
added 2021/05/14 12:0 a.m.128 views

CVE-2021-32819

CVE-2021-32819 - Nodejs Squirrelly RCE : The Squirrelly template engine for Node.js is vulnerable when Express’s render API is used to mix template data with engine configuration options, enabling remote code execution in downstream applications. The root cause is overwriting internal configurati...

8.8CVSS8.3AI score0.59844EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder