Yuriisanin

**Name of the Vulnerable Software and Affected Versions** Markdown Preview Enhanced versions 0.6.5 through 0.19.6 for VSCode and Atom **Description** A command injection issue was discovered via the PDF file import function. **Recommendations** For versions 0.6.5 through 0.19.6, consider disabling the PDF file import function until a patch is available. Restrict access to the import module to minimize the risk of exploitation. Avoid using the PDF import feature in the affected versions until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Markdown Preview Enhanced versions 0.6.5 through 0.19.6 **Description** An issue allows attackers to execute arbitrary commands during the GFM export process. **Recommendations** For versions 0.6.5 through 0.19.6, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Pwndoc version 0.5.3 **Description** An issue in the "/api/audits" component allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file. **Recommendations** For Pwndoc version 0.5.3, consider disabling the "/api/audits" component until a patch is available to prevent privilege escalation and arbitrary code execution. Restrict access to the audit file upload feature to minimize the risk of exploitation.