Typora — Vulnerabilities & Security Advisories 6

All 6 CVE vulnerabilities found in Typora, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-14010	Typora 1.7.4 OS Command Injection via Export PDF Preferences CWE-78	9.8	Critical	2025-12-12
CVE-2023-2971	Typora Local File Disclosure CWE-22	6.3	Medium	2023-08-19
CVE-2023-2317	Typora DOM-Based Cross-site Scripting leading to Remote Code Execution CWE-79	8.6	High	2023-08-19
CVE-2023-2316	Typora Local File Disclosure CWE-22	7.4	High	2023-08-19
CVE-2023-1003	Typora WSH JScript code injection CWE-94	5.3	Medium	2023-02-24
CVE-2022-43668	Typora 跨站脚本漏洞	6.1	-	2022-12-07

All 6 known CVE vulnerabilities affecting Typora with full Chinese analysis, references, and POCs where available.