Markdown-it-highlightjs Security Vulnerabilities and Issues — Markdown-it-highlightjs CVE List

Lucene search

Markdown-it-highlightjs ProjectMarkdown-it-highlightjs

1 matches found

CVE•added 2020/11/16 12:15 p.m.•30 views

CVE-2020-7773

This affects the package markdown-it-highlightjs before 3.3.1. It is possible insert malicious JavaScript as a value of lang in the markdown-it-highlightjs Inline code highlighting feature. const markdownItHighlightjs = require("markdown-it-highlightjs"); const md = require('markdown-it'); const re...

6.5CVSS6.3AI score0.00367EPSS