Markdown Preview Enhanced v0.6.5 and v0.19.6 for VSCode and Atom was discovered to contain a command injection vulnerability via the PDF file import function.
{
"versions": [
{
"introduced": "0"
},
{
"last_affected": "0.6.5"
},
{
"introduced": "0"
},
{
"last_affected": "0.6.5"
},
{
"introduced": "0"
},
{
"last_affected": "0.19.6"
},
{
"introduced": "0"
},
{
"last_affected": "0.19.6"
}
]
}