Skip to content

Commit

Permalink
Added cvss_v3 field to 1 advisory
Browse files Browse the repository at this point in the history
  • Loading branch information
@jasnow @postmodern
jasnow authored and postmodern committed Nov 28, 2023
1 parent 09cecd9 commit a02ccb9
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions gems/bootstrap-wysihtml5-rails/CVE-2019-19919.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,5 +16,6 @@ description: |
Versions of handlebars prior to 3.0.8 or 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution.
Templates may alter an Objects' __proto__ and __defineGetter__ properties, which may allow an attacker to execute
arbitrary code through crafted payloads.
cvss_v3: 9.8
unaffected_versions:
- "< 0.3.3.5"

0 comments on commit a02ccb9

Please sign in to comment.