Vulnerabilities > Markdown Preview Enhanced Project > Markdown Preview Enhanced > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-07	CVE-2022-45026	OS Command Injection vulnerability in Markdown Preview Enhanced Project Markdown Preview Enhanced 0.19.6/0.6.5 An issue in Markdown Preview Enhanced v0.6.5 and v0.19.6 for VSCode and Atom allows attackers to execute arbitrary commands during the GFM export process. network low complexity markdown-preview-enhanced-project CWE-78 critical	9.8
2022-12-07	CVE-2022-45025	OS Command Injection vulnerability in Markdown Preview Enhanced Project Markdown Preview Enhanced 0.19.6/0.6.5 Markdown Preview Enhanced v0.6.5 and v0.19.6 for VSCode and Atom was discovered to contain a command injection vulnerability via the PDF file import function. network low complexity markdown-preview-enhanced-project CWE-78 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.