DAEXT Import Markdown Plugin up to 1.14 on WordPress cross site scripting 🚫 [False Positive]

Noticeinfo

⚠️ Further investigation has shown that this issues is a false-positive. Please review the sources mentioned and consider not using this entry at all.

Productinfo

Type

• WordPress Plugin

Vendor

• DAEXT

Name

• Import Markdown Plugin

Version

• 1.0
• 1.1
• 1.2
• 1.3
• 1.4
• 1.5
• 1.6
• 1.7
• 1.8
• 1.9
• 1.10
• 1.11
• 1.12
• 1.13
• 1.14

Timelineinfo

08/22/2025 CVE reserved
09/22/2025 +31 days Advisory disclosed
09/22/2025 +0 days VulDB entry created
11/20/2025 +59 days VulDB entry last update

Sourcesinfo

Advisory: patchstack.com
False Positive: Yes

CVE: CVE-2025-57901 (🔒)
GCVE (CVE): GCVE-0-2025-57901
GCVE (VulDB): GCVE-100-325321
EUVD: 🔒

Entryinfo

Created: 09/22/2025 21:15
Updated: 11/20/2025 16:32
Changes: 09/22/2025 21:15 (64), 09/24/2025 06:10 (1), 11/20/2025 16:32 (3)
Complete: 🔍
Cache ID: 216::103

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Discussion

Want to know what is going to be exploited?

We predict KEV entries!