Medium severity6.1NVD Advisory· Published May 26, 2021· Updated Jun 17, 2026
CVE-2020-18221
CVE-2020-18221
Description
Cross Site Scripting (XSS) in Typora v0.9.65 and earlier allows remote attackers to execute arbitrary code by injecting commands during block rendering of a mathematical formula.
Affected products
2- Typora/Typoradescription
Patches
Vulnerability mechanics
References
1- github.com/typora/typora-issues/issues/2204nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.