MacDownApp/macdown

Releases37

Frequency1 month 3 weeks

Last Release over 6 years ago

Stars9.77K

Open source Markdown editor for macOS.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-12173 ↗	May 18, 2019Saturday, 18 May 2019, 00:29	—	6.8 MEDIUM
MacDown 0.7.1 (870) allows remote code execution via a file:\\\ URI, with a .app pathname, in the HREF attribute of an A element. This is different from CVE-2019-12138.
CVE-2019-12138 ↗	May 16, 2019Thursday, 16 May 2019, 14:29	—	4.6 MEDIUM
MacDown 0.7.1 allows directory traversal, for execution of arbitrary programs, via a file:/// or ../ substring in a shared note.