CVE-2020-8127: Cross-site Scripting
(updated )
Insufficient validation in cross-origin communication (postMessage) in reveal.js allows attackers to perform cross-site scripting attacks.
References
Detect and mitigate CVE-2020-8127 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →