How severe is CVE-2026-33937?

CVE-2026-33937 is rated critical severity with a CVSS score of 9.8 out of 10.

Is there a public proof-of-concept (PoC) for CVE-2026-33937?

Yes. Public exploit material exists via 1 GitHub PoC repository. See the references section for direct links. Treat all linked code as untrusted and use only in authorized, isolated lab environments.

What packages are affected by CVE-2026-33937?

CVE-2026-33937 affects: handlebars (fixed in 4.7.9, npm). Source: OSV.dev.

How do I fix CVE-2026-33937?

The vendor has published a patch — see the "Vendor Patch" link in the references section. If you cannot patch immediately, review mitigation guidance in this advisory and monitor for exploitation attempts.

Critical (9.8) Friday, March 27, 2026

Handlebars allows arbitrary code execution [PoC]

CVE-2026-33937

Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, `Handlebars.compile()` accepts a pre-parsed AST object in addition to a template string....

Overview

A critical security vulnerability has been discovered in the popular Handlebars templating library. Tracked as CVE-2026-33937, this flaw allows an attacker to execute arbitrary code on a server using Handlebars, potentially leading to a complete system compromise.

Vulnerability Details

Handlebars is a widely-used JavaScript library for building web page templates. Normally, developers pass a template string (like "Hello {{name}}") to the Handlebars.compile() function. However, from versions 4.0.0 through 4.7.8, this function also accepts a pre-parsed Abstract Syntax Tree (AST) object-an internal representation of the template.

The vulnerability exists because the value field within a NumberLiteral AST node is inserted directly into the final JavaScript code without proper sanitization. If an attacker can supply a maliciously crafted AST object to the compile() function-for example, by manipulating API input that gets deserialized into an object-they can inject and execute their own JavaScript on the server.

Impact

This is a Remote Code Execution (RCE) vulnerability with a maximum severity CVSS score of 9.8. Successful exploitation could allow an attacker to:

Steal sensitive data, such as user credentials or database information.
Install malware or create a persistent backdoor on the server.
Disrupt services by deleting or encrypting files.
Use the compromised server to attack other internal systems.

Such incidents often lead to significant data breaches. You can review historical incidents to understand the potential fallout at our breach reports page.

Remediation and Mitigation

The primary and most critical action is to update the Handlebars library.

Immediate Action:

Upgrade: Update Handlebars to version 4.7.9 or later immediately. This version contains the necessary fix.

If Immediate Patching is Not Possible: 2. Input Validation: Ensure that the argument passed to Handlebars.compile() is always a string. Implement strict input validation to reject any plain objects or JSON-deserialized values that could be interpreted as an AST. 3. Use Runtime Build: If your server-side templates are pre-compiled during your application’s build process, switch to using the Handlebars runtime-only build (handlebars/runtime). This build does not include the vulnerable compile() function at all.

Staying informed about such critical vulnerabilities is key to maintaining security. For the latest updates on threats like this, follow our security news. Organizations using Handlebars in a server-side context must treat this vulnerability with the highest priority and apply fixes without delay.

Never miss a critical vulnerability

Get real-time security alerts delivered to your preferred platform.

Telegram LinkedIn Mastodon Bluesky

Am I Affected by CVE-2026-33937?

Pick an ecosystem, paste your installed version, and we'll compare it against the fixed version published on OSV.dev. Browser-only — nothing is sent to a server.

Heuristic comparison only. Always cross-check against the vendor advisory before making patching decisions.

Public PoC References

Unverified third-party code

These repositories are publicly listed on GitHub and have not been audited by Yazoul Security. They may contain malware, backdoors, destructive payloads, or operational security risks (telemetry, exfiltration). Treat them as hostile binaries. Inspect source before execution. Run only in isolated, disposable lab environments (offline VM, no credentials, no production data).

Authorized use only. This information is provided for defensive research, detection engineering, and patch validation. Using exploit code against systems you do not own or do not have explicit written permission to test is illegal in most jurisdictions and violates Yazoul's terms of use.

Repository	Stars	Last Push
dinhvaren/cve-2026-33937 CVE-2026-33937 Handlebars RCE exploit PoC (AST Injection)	★ 0	2026-03-29

Showing 1 of 1 known references. Source: nomi-sec/PoC-in-GitHub.

Related Advisories

Critical (10.0) Apr 7

CVE-2026-39337

ChurchCRM is an open-source church management system. Prior to 7.1.0, critical pre-authentication remote code execution vulnerability in ChurchCRM's setup wizard allows unauthenticated attackers to in...

Critical (9.8) Apr 1

CVE-2026-29014

MetInfo CMS versions 7.9, 8.0, and 8.1 contain an unauthenticated PHP code injection vulnerability that allows remote attackers to execute arbitrary code by sending crafted requests with malicious PHP...

Critical (9.1) Mar 27

CVE-2026-27876

A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always ...

Critical (9.8) Mar 20

CVE-2026-33057

Mesop is a Python-based UI framework that allows users to build web applications. In versions 1.2.2 and below, an explicit web endpoint inside the ai/ testing module infrastructure directly ingests un...