CNNVD-202510-930 Information

Oct 07, 2025 cve

CNNVD ID

CNNVD-202510-930

CVE-2025-60312

CNNVD Published: 2025-10-07

Description (Chinese)

SourceCodester Markdown to HTML Converter是SourceCodester开源的一个markdown到html转换器。 SourceCodester Markdown to HTML Converter v1.0版本存在安全漏洞，该漏洞源于Markdown Input字段容易受到跨站脚本攻击，可能导致在受害者浏览器中执行任意HTML和JavaScript代码。

Description (English)

SourceCodester Markdown to HTML Contractor is a Markdown to html converter from SourceCodester. Security Codester Markdown to HTML Contractor v1.0 has a security loophole, which stems from the vulnerability of the Markdown Input field to cross-site script attacks, which may result in the implementation of any HTML and JavaScript codes in the victim browser.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-10-07

Last Modified

2026-02-24

References

https://github.com/ChuckBartowski7/Vulnerability-Research/blob/main/CVE-2025-60312/README.md https://www.sourcecodester.com/php/18295/markdown-html-converter-using-php-and-javascript-source-code.html

Share on: