Wangking1

**Name of the Vulnerable Software and Affected Versions** typora versions through 1.38 **Description** The issue allows remote attackers to run arbitrary code via export from the editor, which is a result of a Cross Site Scripting (XSS) vulnerability. This enables attackers to execute malicious scripts on the client-side. **Recommendations** For versions through 1.38, update to a version that contains a fix for this issue to prevent remote attackers from running arbitrary code via export from the editor. At the moment, there is no information about a newer version that contains a fix for this vulnerability.