131 matches found
Nuxt MDC 跨站脚本漏洞
Nuxt MDC is a Nuxt open source application that enhances regular Markdown. A cross-site scripting vulnerability exists in Nuxt MDC that stems from insecure parsing logic for URLs in Markdown, leading to arbitrary JavaScript code execution...
PT-2025-5844 · Nuxt.Js · @Nuxtjs/Mdc
Name of the Vulnerable Software and Affected Versions: @nuxtjs/mdc versions prior to 0.13.3 Description: The issue arises from unsafe parsing logic of the URL from markdown, which can lead to arbitrary JavaScript code execution due to a bypass of the existing guards around the javascript: protoco...
CVE-2024-54404
Cross-Site Request Forgery CSRF vulnerability in Nazmul Ahsan MDC Comment Toolbar mdc-comment-toolbar allows Stored XSS.This issue affects MDC Comment Toolbar: from n/a through = 1.1...
CVE-2025-23639
Cross-Site Request Forgery CSRF vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows Stored XSS.This issue affects MDC YouTube Downloader: from n/a through = 3.0.0...
CVE-2025-23639
Cross-Site Request Forgery CSRF vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows Stored XSS.This issue affects MDC YouTube Downloader: from n/a through = 3.0.0...
CVE-2025-23639
CVE-2025-23639 is a CSRF-to-Stored XSS issue in MDC YouTube Downloader, affecting versions up to 3.0.0. Connected sources confirm the vulnerability and affected product, but do not provide a patch/version to mitigate or definitive exploit details. Monitoring for updates is advised.
CVE-2025-23639 WordPress MDC YouTube Downloader plugin <= 3.0.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows Stored XSS.This issue affects MDC YouTube Downloader: from n/a through = 3.0.0...
WordPress MDC YouTube Downloader plugin <= 3.0.0 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin MDC YouTube Downloader versions = 3.0.0...
WordPress plugin MDC YouTube Downloader 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site...
CVE-2024-54404
Cross-Site Request Forgery CSRF vulnerability in Nazmul Ahsan MDC Comment Toolbar mdc-comment-toolbar allows Stored XSS.This issue affects MDC Comment Toolbar: from n/a through = 1.1...
CVE-2024-54404 WordPress MDC Comment Toolbar plugin <= 1.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Nazmul Ahsan MDC Comment Toolbar mdc-comment-toolbar allows Stored XSS.This issue affects MDC Comment Toolbar: from n/a through = 1.1...
CVE-2024-54404
CVE-2024-54404 affects the MDC Comment Toolbar WordPress plugin. Affected: MDC Comment Toolbar
WordPress plugin MDC Comment Toolbar 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
WordPress MDC Comment Toolbar plugin <= 1.1 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin MDC Comment Toolbar versions = 1.1...
CVE-2024-51875
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nazmul Ahsan MDC YouTube Downloader allows DOM-Based XSS.This issue affects MDC YouTube Downloader: from n/a through 3.0.0...
CVE-2024-51875
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows DOM-Based XSS.This issue affects MDC YouTube Downloader: from n/a through = 3.0.0...
CVE-2024-51875 WordPress MDC YouTube Downloader plugin <= 3.0.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nazmul Ahsan MDC YouTube Downloader allows DOM-Based XSS.This issue affects MDC YouTube Downloader: from n/a through 3.0.0...
CVE-2024-51875 WordPress MDC YouTube Downloader plugin <= 3.0.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Nazmul Ahsan MDC YouTube Downloader mdc-youtube-downloader allows DOM-Based XSS.This issue affects MDC YouTube Downloader: from n/a through = 3.0.0...
CVE-2024-51875
CVE-2024-51875 is a DOM-based Cross-Site Scripting vulnerability in the WordPress plugin “MDC YouTube Downloader” (MDC YouTube Downloader) affecting versions up to 3.0.0. The issue stems from improper input neutralization during web page generation, enabling DOM-based XSS. Public records describe...
WordPress plugin MDC YouTube Downloader 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...