CVE-2019-12173 – MacDown 0.7.1 (870) allows remote code execution via a file:\ URI, with a .app pathname, …

Vuln ID: CVE-2019-12173

Published:  2019-05-18  00:29:00Z

Description: MacDown 0.7.1 (870) allows remote code execution via a file:\ URI, with a .app pathname, in the HREF attribute of an A element. This is different from CVE-2019-12138.

Source: NVD.NIST.GOV

 

Tags