Name of the Vulnerable Software and Affected Versions showdown versions prior to 1.9.1

Description The issue allows attackers to access window.opener for the original page when opening links, which can be used for phishing attacks. This is due to the package using target=' blank' in anchor tags.

Recommendations Upgrade to version 1.9.1 or later.