Lucene search

K

Highlight.Js Security Vulnerabilities - May

cve
cve

CVE-2020-26237

Highlight.js is a syntax highlighter written in JavaScript. Highlight.js versions before 9.18.2 and 10.1.2 are vulnerable to Prototype Pollution. A malicious HTML code block can be crafted that will result in prototype pollution of the base object's prototype during highlighting. If you allow users...

8.7CVSS

8.3AI Score

0.003EPSS

2020-11-24 11:15 PM
93
4