High severityNVD Advisory· Published Jan 21, 2022· Updated Aug 2, 2024
Improper Neutralization of Special Elements Used in a Template Engine in bobthecow/mustache.php
CVE-2022-0323
Description
Improper Neutralization of Special Elements Used in a Template Engine in Packagist mustache/mustache prior to 2.14.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mustache/mustachePackagist | >= 2.0.0, < 2.14.1 | 2.14.1 |
Affected products
2- bobthecow/bobthecow/mustache.phpv5Range: unspecified
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-4rmr-c2jx-vx27ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-0323ghsaADVISORY
- github.com/FriendsOfPHP/security-advisories/blob/master/mustache/mustache/CVE-2022-0323.yamlghsaWEB
- github.com/bobthecow/mustache.php/commit/579ffa5c96e1d292c060b3dd62811ff01ad8c24eghsax_refsource_MISCWEB
- github.com/bobthecow/mustache.php/releases/tag/v2.14.1ghsaWEB
- huntr.dev/bounties/a5f5a988-aa52-4443-839d-299a63f44fb7ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.