CVE-2025-9540

The Markup Markdown WordPress plugin before 3.20.10 allows links to contain JavaScript which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

More information : https://wpscan.com/vulnerability/79e606df-50a0-4639-b2d9-4a77111fd729/