CVE-2020-26237 Highlight.js versions before 9.18.2 and 10.1.2 are vulnerable tonvd.nist.gov1 pointbased26 years ago