Vulnerabilities and security researches formathjax-latex mathjax-latex

Jun 16, 2026

CVE, Research URL: 9486ca34-d436-490f-8779-e79d7dcdc9bc
Home page URL: Security reports for MathJax-LaTeX
Application: MathJax-LaTeX
Date: -
Research Description: MathJax-LaTeX [mathjax-latex] < 1.2 Mathjax Latex 1.1 - Setting Manipulation CSRF The MathJax-LaTeX WordPress plugin was affected by a Setting Manipulation CSRF security vulnerability.
Affected versions: max 1.2.
Status: vulnerable

CVE, Research URL: dc58a5e8913fe3e0530789dbb21e0998a8536ee4
Home page URL: Security reports for MathJax-LaTeX
Application: MathJax-LaTeX
Date: Mar 25, 2013
Research Description: MathJax-LaTeX [mathjax-latex] < 1.2 MathJax-LaTeX < 1.2 - Cross-Site Request Forgery The MathJax LaTeX plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions before 1.2. This is due to missing or incorrect nonce validation on the mathjax_plugin_options function. This may make it possible for unauthenticated attackers to arbitrarily change plugin settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Affected versions: max 1.2.
Status: vulnerable

Jun 07, 2024

CVE, Research URL: b6dec7f5d92e051d8962f9401cf2ccd482a9f91b
Home page URL: Security reports for MathJax-LaTeX
Application: MathJax-LaTeX
Date: Mar 26, 2013
Research Description: MathJax-LaTeX [mathjax-latex] < 1.2 WordPress Mathjax Latex Plugin 1.1 - CSRF Mathjax Latex plugin is prone to a cross-site request forgery. It allows to specify Javascript that will be loaded with each post. Also, it will be loaded onto the homepage of the WordPress blog. Update the plugin.
Affected versions: max 1.2.
Status: vulnerable