Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-32822

Upgrade handlebars.js

    XMLWordPrintable

    Details

      Description

      Client reported the following CVE with handlebars: https://nvd.nist.gov/vuln/detail/CVE-2021-23383
      It seems we use handlebars-1.0.0.js in the nuxeo-rest-api-server module. Found at this location on a Nuxeo instance: nxserver/web/root.war/modules/org.nuxeo.ecm.platform.restapi.server/skin/resources/lib

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: