CVE-2016-4812
The CVE-2016-4812 has concrete details: the WordPress plugin Markdown on Save Improved is affected by a stored XSS vulnerability in versions up to 2.5.1, allowing remote attackers to run arbitrary scripts via unspecified vectors. Exploitation is documented in multiple sources (NVD, JVN, CVE lists...