Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Cross-site Scripting (XSS) - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0.
Cross-site Scripting (XSS) - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0.
Insufficient validation in cross-origin communication (postMessage) in reveal.js allows attackers to perform cross-site scripting attacks.