CVSS: 6.1EPSS: 1%CPEs: 1EXPL: 1CVE-2019-7296
https://notcve.org/view.php?id=CVE-2019-7296
31 Jan 2019 — typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula. typora, hasta la versión 0.9.64, tiene Cross-Site Scripting (XSS), además de la ejecución remota de comandos, durante el renderizado inline de una fórmula matemática. • https://github.com/typora/typora-issues/issues/2131 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 1%CPEs: 94EXPL: 1CVE-2019-6803
https://notcve.org/view.php?id=CVE-2019-6803
25 Jan 2019 — typora through 0.9.9.20.3 beta has XSS, with resultant remote command execution, via the left outline bar. typora, hasta la versión beta 0.9.9.20.3, tiene Cross-Site Scripting (XSS), que desemboca en la ejecución de comandos remota en la barra "outline" izquierda. • https://github.com/typora/typora-issues/issues/2124 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •