Typora 1.6.7

CPE Details

Typora 1.6.7
typora
typora
1.6.7
2023-08-24
09h38 +00:00
2023-08-24
09h44 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:typora:typora:1.6.7:*:*:*:*:*:*:*

Informations

Vendor

typora

Product

typora

Version

1.6.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-41481 2024-08-07 22h00 +00:00 Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the Mermaid component.
6.1
Medium
CVE-2024-41482 2024-08-07 22h00 +00:00 Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the MathJax component.
6.1
Medium
CVE-2023-2971 2023-08-19 05h45 +00:00 Improper path handling in Typora before 1.7.0-dev on Windows and Linux allows a crafted webpage to access local files and exfiltrate them to remote web servers via "typora://app/typemark/". This vulnerability can be exploited if a user opens a malicious markdown file in Typora, or copies text from a malicious webpage and paste it into Typora.
6.5
Medium
CVE-2022-40011 2022-12-22 23h00 +00:00 Cross Site Scripting (XSS) vulnerability in typora through 1.38 allows remote attackers to run arbitrary code via export from editor.
6.1
Medium