CVE-2023-29641

Cross Site Scripting XSS vulnerability in pandao editor.md thru 1.5.0 allows attackers to inject arbitrary web script or HTML via crafted markdown text...

EUVD-2018-0786

Malware in sbrugna...

EUVD-2018-0469

Malware in sbrugna...

EUVD-2019-0643

Malware in sbrugna...

EUVD-2019-0368

Malware in sbrugna...

EUVD-2017-18271

Malware in sbrugna...

EUVD-2023-1499

Malicious code in bioql PyPI...

CVE-2020-19660

Cross Site Scripting XSS pandao editor.md 1.5.0 allows attackers to execute arbitrary code via crafted linked url values...

CVE-2019-14517

pandao Editor.md 1.5.0 allows XSS via the Javascript: string...

CVE-2019-14653

pandao Editor.md 1.5.0 allows XSS via an attribute of an ABBR or SUP element...

CVE-2025-31035

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Benjamin Chris WP Editor.md – The Perfect WordPress Markdown Editor wp-editormd allows Stored XSS.This issue affects WP Editor.md – The Perfect WordPress Markdown Editor: from n/a through = 10.2.1...

CVE-2025-31035

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Benjamin Chris WP Editor.md – The Perfect WordPress Markdown Editor wp-editormd allows Stored XSS.This issue affects WP Editor.md – The Perfect WordPress Markdown Editor: from n/a through = 10.2.1...

CVE-2025-31035 WordPress WP Editor.md – The Perfect Markdown Editor plugin <= 10.2.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Benjamin Chris WP Editor.md – The Perfect WordPress Markdown Editor wp-editormd allows Stored XSS.This issue affects WP Editor.md – The Perfect WordPress Markdown Editor: from n/a through = 10.2.1...

CVE-2025-31035

CVE-2025-31035 is an authenticated Stored Cross-Site Scripting (XSS) vulnerability in WP Editor.md – The Perfect WordPress Markdown Editor. The issue is caused by improper input neutralization during web page generation, enabling stored XSS. Affected software range includes WP Editor.md versions ...

Cross-Site Scripting (XSS)

editor.md is vulnerable to Cross-Site Scripting XSS. The vulnerability exists in filterHTMLTags function at editormd.js because the inputs are not properly filtered which allows an attacker to inject and execute arbitrary JavaScript...

CVE-2020-19660

Cross Site Scripting XSS pandao editor.md 1.5.0 allows attackers to execute arbitrary code via crafted linked url values...

CVE-2020-19660

Cross Site Scripting XSS pandao editor.md 1.5.0 allows attackers to execute arbitrary code via crafted linked url values...

PT-2023-11525 · Editor.Md · Editor.Md

Name of the Vulnerable Software and Affected Versions: editor.md version 1.5.0 Description: The issue allows attackers to execute arbitrary code via crafted linked url values, which is a Cross Site Scripting XSS attack. This enables attackers to inject malicious scripts into websites, potentially...

Editor.md 跨站脚本漏洞

Editor.md is an open source embedded online Markdown a markup language editor. A security vulnerability exists in Editor.md version 1.5.0, which stems from a cross-site scripting XSS vulnerability that allows an attacker to execute arbitrary code via a crafted link url value...

CVE-2020-19660

CVE-2020-19660: XSS in pandao/editor.md 1.5.0 due to unsafe handling of linked URL values in editor.md’s HTML filtering path (filterHTMLTags). Exploitation status not publicly detailed in the provided sources; CVSS indicates network attack vector, low attack complexity, no privileges required, us...