Lucene search
PRIOn knowledge basePRION:CVE-2023-2971HistoryAug 19, 2023 - 6:15 a.m.
Design/Logic Flaw
2023-08-1906:15:00
PRIOn knowledge base
www.prio-n.com
20
logic flaw
typora vulnerability
windows
linux
local file access
exfiltration
Improper path handling in Typora before 1.7.0-dev on Windows and Linux allows a crafted webpage to access local files and exfiltrate them to remote web servers via βtypora://app/typemark/β. This vulnerability can be exploited if a user opens a malicious markdown file in Typora, or copies text from a malicious webpage and paste it into Typora.
References
Related
cve
cve
CVE-2023-2971
2023-08-19 06:15:47
cvelist
cvelist
CVE-2023-2971 Typora Local File Disclosure
2023-08-19 05:45:35
nvd
nvd
CVE-2023-2971
2023-08-19 06:15:47