CVE-2025-65716

CVSS v3.1

8.8

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Markdown Preview Enhanced versions 0.8.18

Description An issue exists in Markdown Preview Enhanced that allows for the execution of arbitrary code. This occurs when a specially crafted .Md file is uploaded. The issue involves the processing of the uploaded file, potentially leading to unintended code execution.

Recommendations Update to a newer version that contains a fix for this vulnerability.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2025-65716

Affected Products

Markdown Preview Enhanced

CVE-2025-65716

Weakness Enumeration

Related Identifiers

Affected Products

References · 6