npm package
reveal.js
pkg:npm/reveal.js
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-0776 | — | < 4.3.0 | 4.3.0 | Mar 1, 2022 | Cross-site Scripting (XSS) - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0. | ||
| CVE-2020-8127 | — | < 3.9.2 | 3.9.2 | Feb 28, 2020 | Insufficient validation in cross-origin communication (postMessage) in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks. |
- CVE-2022-0776Mar 1, 2022affected < 4.3.0fixed 4.3.0
Cross-site Scripting (XSS) - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0.
- CVE-2020-8127Feb 28, 2020affected < 3.9.2fixed 3.9.2
Insufficient validation in cross-origin communication (postMessage) in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks.