CVE-2020-8127

Insufficient validation in cross-origin communication (postMessage) in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks.
References
Link Resource
https://hackerone.com/reports/691977 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:revealjs:reveal.js:*:*:*:*:*:node.js:*:*

Information

Published : 2020-02-28 08:15

Updated : 2020-03-03 09:30


NVD link : CVE-2020-8127

Mitre link : CVE-2020-8127

Products Affected
No products.
CWE