Vulnerability CVE-2020-28459


Published: 2022-07-25

Description:
This affects all versions of package markdown-it-decorate. An attacker can add an event handler or use javascript:xxx for the link.

 References:
https://security.snyk.io/vuln/SNYK-JS-MARKDOWNITDECORATE-1044068

Copyright 2026, cxsecurity.com

 

Back to Top