Vulnerabilities and security researches forwp-editormd wp-editormd

Jun 07, 2024

CVE, Research URL: CVE-2017-9336
Home page URL: Security reports for WP Editor.md – The Perfect WordPress Markdown Editor
Application: WP Editor.md – The Perfect WordPress Markdown Editor
Date: Jun 01, 2017
Research Description: The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
Affected versions: max 1.6.
Status: vulnerable

CVE, Research URL: CVE-2018-18919
Home page URL: Security reports for WP Editor.md – The Perfect WordPress Markdown Editor
Application: WP Editor.md – The Perfect WordPress Markdown Editor
Date: Nov 04, 2018
Research Description: The WP Editor.md plugin 10.0.1 for WordPress allows XSS via the comment area.
Affected versions: max 10.0.4.
Status: vulnerable

Apr 11, 2025

CVE, Research URL: CVE-2025-31035
Home page URL: Security reports for WP Editor.md – The Perfect WordPress Markdown Editor
Application: WP Editor.md – The Perfect WordPress Markdown Editor
Date: Apr 09, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Benjamin Chris WP Editor.md – The Perfect WordPress Markdown Editor allows Stored XSS. This issue affects WP Editor.md – The Perfect WordPress Markdown Editor: from n/a through 10.2.1.
Affected versions: max 10.2.1.
Status: vulnerable