CNNVD-202509-4321 Information
CNNVD ID
CNNVD-202509-4321
Related CVE
- CNNVD Published: 2025-09-29
Description (Chinese)
mkdocs-include-markdown-plugin是Álvaro Mondéjar Rubio个人开发者的一个Markdown文件处理器。 mkdocs-include-markdown-plugin 7.1.7及之前版本存在输入验证错误漏洞,该漏洞源于未验证输入可能与替换占位符冲突。
Description (English)
mkdocs-include-markdown-plugin is a Markdown file processor for Álvaro Mondéjar Rubio personal developers. Mkdocs-include-markdown-plugin 7.1.7 and previous versions have input authentication bugs, which stem from the potential conflict between unverified input and the replacement placeholder.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
个人开发者
Published
2025-09-29
Last Modified
2026-02-24
References
https://github.com/mondeja/mkdocs-include-markdown-plugin/commit/7466d67aa0de8ffbc427204ad2475fed07678915 https://github.com/mondeja/mkdocs-include-markdown-plugin/issues/274 https://github.com/mondeja/mkdocs-include-markdown-plugin/pull/277 https://github.com/mondeja/mkdocs-include-markdown-plugin/security/advisories/GHSA-v39m-5m9j-m9w9
Patch
https://github.com/mondeja/mkdocs-include-markdown-plugin/releases
Share on: