5 matches found
CVE-2020-8127
Insufficient validation in cross-origin communication postMessage in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks...
Cross-Site Scripting
Overview Insufficient validation in cross-origin communication postMessage in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks. Recommendation Upgrade to version 3.9.2 or later References - CVE - GitHub Advisory...
CVE-2020-8127
Insufficient validation in cross-origin communication postMessage in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks...
CVE-2020-8127
CVE-2020-8127 affects reveal.js 3.9.1 and earlier, where insufficient validation in cross-origin postMessage enables cross-site scripting. Impact is limited to affected reveal.js usage; exploits are not detailed here. Remediation: upgrade to reveal.js 3.9.2 or later. This vulnerability is confirm...
CVE-2020-8127
Insufficient validation in cross-origin communication postMessage in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks...