Lucene search

SnykCVELIST:CVE-2020-7773

HistoryNov 16, 2020 - 12:00 p.m.

CVE-2020-7773 Cross-site Scripting (XSS)

2020-11-1612:00:24

snyk

www.cve.org

cve-2020-7773

markdown-it-highlightjs

javascript

inline code

highlighting

security vulnerability

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

EPSS

0.001

Percentile

38.7%

JSON

This affects the package markdown-it-highlightjs before 3.3.1. It is possible insert malicious JavaScript as a value of lang in the markdown-it-highlightjs Inline code highlighting feature. const markdownItHighlightjs = require(“markdown-it-highlightjs”); const md = require(‘markdown-it’); const reuslt_xss = md() .use(markdownItHighlightjs, { inline: true }) .render(‘console.log(42){.">js}’); console.log(reuslt_xss);

CNA Affected

[
  {
    "product": "markdown-it-highlightjs",
    "vendor": "n/a",
    "versions": [
      {
        "lessThan": "3.3.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/valeriangalliat/markdown-it-highlightjs/blob/v3.3.0/index.js%23L52

github.com/valeriangalliat/markdown-it-highlightjs/pull/14

snyk.io/vuln/SNYK-JS-MARKDOWNITHIGHLIGHTJS-1040461

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

EPSS

0.001

Percentile

38.7%

JSON

Related for CVELIST:CVE-2020-7773