CVE-2020-15138
CVE-2020-15138: Prism.js contains an XSS via the Previewers/Easing previews in Prism >=1.1.0 with Previewers plugin (>=1.10.0) or Previewer: Easing (1.1.0–1.9.0). The issue is fixed in Prism 1.21.0. A workaround is to disable easing preview on impacted code blocks if upgrading is not feasib...