CVE-2020-8127 · Vexday

CVE-2020-8127

EPSS 1.2%CWE-79

Insufficient validation in cross-origin communication (postMessage) in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks.

Productos afectados

n/a · reveal.js

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://hackerone.com/reports/691977