Medium severity4.7NVD Advisory· Published Sep 22, 2025· Updated Apr 15, 2026
CVE-2025-9540
CVE-2025-9540
Description
The Markup Markdown WordPress plugin before 3.20.10 allows links to contain JavaScript which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<3.20.10+ 1 more
- (no CPE)range: <3.20.10
- (no CPE)range: <3.20.10
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.