XSS vulnerability due to improper value escaping
The library does not properly escape attribute values making XSS exploits possible.
Advisories for Gem/Handlebars-Source package
2015
The library does not properly escape attribute values making XSS exploits possible.