While working on TypeScript-Website project, I scanned the dependency manifest and found that it uses a vulnerable version of handlebars. The scan revealed a prototype pollution issue where partial template resolution can access polluted prototype properties, potentially leading to XSS if malicious content is rendered without proper escaping.
CVE Report
CVE Link
While working on TypeScript-Website project, I scanned the dependency manifest and found that it uses a vulnerable version of handlebars. The scan revealed a prototype pollution issue where partial template resolution can access polluted prototype properties, potentially leading to XSS if malicious content is rendered without proper escaping.
CVE Report
CVE Link