Lucene search
Markdown-it-highlightjs Project Security Vulnerabilities
cve
This affects the package markdown-it-highlightjs before 3.3.1. It is possible insert malicious JavaScript as a value of lang in the markdown-it-highlightjs Inline code highlighting feature. const markdownItHighlightjs = require("markdown-it-highlightjs"); const md = require('markdown-it'); const...
6.5CVSS
6.3AI Score
0.001EPSS
2020-11-16 12:15 PM
17