WordPress Plugin Vulnerabilities

Markup Markdown < 3.20.10 - Contributor+ Stored XSS

Description

The plugin allows links to contain JavaScript which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

Proof of Concept

Affects Plugins

Plugin icon
markup-markdown
Fixed in 3.20.10

References

CVE
CVE-2025-9541

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.9 (medium)

Miscellaneous

Original Researcher
Bob Matyas
Submitter
Bob Matyas
Submitter website
https://www.bobmatyas.com
Submitter twitter
bobmatyas
Verified
Yes
WPVDB ID
3828b320-9f7b-4a2a-a6b0-200b023d602c

Timeline

Publicly Published
2025-09-01 (about 4 months ago)
Added
2025-09-01 (about 4 months ago)
Last Updated
2025-09-01 (about 4 months ago)

Other

Published
Title
Published
2021-08-02
Title
SMS Alert Order Notifications – WooCommerce < 3.4.7 Authenticated Cross Site Scripting
Published
2014-08-01
Title
wp-football 1.1 - Multiple Cross-Site Scripting (XSS)
Published
2014-08-01
Title
Bookings <= 1.8.2 - controlpanel.php error Parameter XSS
Published
2025-02-24
Title
WP Social SEO Booster – Knowledge Graph Social Signals SEO <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-01-14
Title
Social proof testimonials and reviews by Repuso < 5.21 - Authenticated (Contributor+) Stored Cross-Site Scripting