16 matches found
CVE-2019-7295
typora through 0.9.63 has XSS, with resultant remote command execution, during block rendering of a mathematical formula...
EUVD-2019-16839
Malware in sbrugna...
EUVD-2020-10148
Malware in sbrugna...
EUVD-2019-16840
Malware in sbrugna...
CVE-2020-18221
Cross Site Scripting XSS in Typora v0.9.65 and earlier allows remote attackers to execute arbitrary code by injecting commands during block rendering of a mathematical formula...
CVE-2019-7296
typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula...
CVE-2020-18748
Cross Site Scripting XSS in Typora v0.9.65 allows attackers to execute arbitrary code via mathjax syntax due to a mathjax configuration error in the mathematical formula blocks. This is a different vulnerability from CVE-2020-18221...
Cross site scripting
Cross Site Scripting XSS in Typora v0.9.65 allows attackers to execute arbitrary code via mathjax syntax due to a mathjax configuration error in the mathematical formula blocks. This is a different vulnerability from CVE-2020-18221...
CVE-2020-18221
Cross Site Scripting XSS in Typora v0.9.65 and earlier allows remote attackers to execute arbitrary code by injecting commands during block rendering of a mathematical formula...
CVE-2019-7296
typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula...
Design/Logic Flaw
typora through 0.9.63 has XSS, with resultant remote command execution, during block rendering of a mathematical formula...
CVE-2019-7296
typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula...
Design/Logic Flaw
typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula...
CVE-2019-7296
typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula...
CVE-2019-7295
typora through 0.9.63 has XSS, with resultant remote command execution, during block rendering of a mathematical formula...
CVE-2019-7296
CVE-2019-7296 affects Typora up to version 0.9.64, where an XSS vulnerability in the inline rendering of mathematical formulas can lead to remote command execution. The incident is documented across multiple feeds (NVD, Red Hat, CVE lists). The core issue is a cross-site scripting flaw that can b...