High severity7.8NVD Advisory· Published May 17, 2019· Updated Jun 17, 2026
CVE-2019-12172
CVE-2019-12172
Description
Typora 0.9.9.21.1 (1913) allows arbitrary code execution via a modified file: URL syntax in the HREF attribute of an AREA element, as demonstrated by file:\\\ on macOS or Linux, or file://C| on Windows. This is different from CVE-2019-12137.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Typora/Typoradescription
Patches
Vulnerability mechanics
References
1- github.com/typora/typora-issues/issues/2166nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.