Vulnerabilities > Typora > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-01-31 CVE-2019-7296 Cross-site Scripting vulnerability in Typora
typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula.
network
low complexity
typora CWE-79
6.1
6.1
2019-01-31 CVE-2019-7295 Cross-site Scripting vulnerability in Typora
typora through 0.9.63 has XSS, with resultant remote command execution, during block rendering of a mathematical formula.
network
low complexity
typora CWE-79
6.1
6.1
2019-01-25 CVE-2019-6803 Cross-site Scripting vulnerability in Typora
typora through 0.9.9.20.3 beta has XSS, with resultant remote command execution, via the left outline bar.
network
low complexity
typora CWE-79
6.1
6.1