nodemailer-express-handlebars icon indicating copy to clipboard operation
nodemailer-express-handlebars copied to clipboard

Published 20 hours ago verified publisher icon yads

Security Issue [Denial of Service]

Open axago opened this issue 5 years ago • 1 comments

Remediation : Upgrade to version 4.4.5 or later.

Screen Shot 2019-11-07 at 22 38 18

axago avatar Nov 07 '19 21:11 axago

NPM Security advisory 1324 Handlebars sadly has multiple security issues at the moment. I think we need to wait for a merge on https://github.com/ericf/express-handlebars/pull/267 and than require that version of express-handlebars for this library.

Handlebars vulnerabilities: https://www.npmjs.com/advisories/1300 https://www.npmjs.com/advisories/1316 https://www.npmjs.com/advisories/1324 https://www.npmjs.com/advisories/1325

milo526 avatar Nov 26 '19 07:11 milo526