CVE-2026-33940 Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial
ATT&CK techniques detected
T1059.007JavaScript
48%
“cve - 2026 - 33940 handlebars. js has javascript injection via ast type confusion when passing an object as dynamic partial you need to enable javascript to run this app.”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
Information published.