AI Score
Confidence
High
EPSS
Percentile
9.0%
Typora v1.0.0 through v1.7 version (below) Markdown editor has a cross-site scripting (XSS) vulnerability, which allows attackers to execute arbitrary code by uploading Markdown files.
github.com/whoisoo6/Stored-xss-vulnerability-exists-in-Typra