Node.js-Expess-MongoDB-CRUD icon indicating copy to clipboard operation
Node.js-Expess-MongoDB-CRUD copied to clipboard

Published 20 hours ago verified publisher icon CodAffection

Options to control prototype access:

Open Savalone47 opened this issue 4 years ago • 0 comments

Allowing prototype properties may allow template authors to execute arbitray code on you the machine where Handlebars is running. Even with some restrictions in place, an attacker may fabricate Handlebars templates that crash your machine.

https://handlebarsjs.com/api-reference/runtime-options.html#options-to-control-prototype-access

Savalone47 avatar Sep 30 '20 21:09 Savalone47