2 matches found
CVE-2025-24719
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpdevart Widget Countdown widget-countdown allows Stored XSS.This issue affects Widget Countdown: from n/a through = 2.7.1...
CVE-2025-24719
CVE-2025-24719 refers to a Stored XSS vulnerability in the WordPress plugin Widget Countdown (wpdevart) affecting versions up to 2.7.1. The issue is due to improper input neutralization during web page generation. The documented CVSS v3.1 base score is 6.5 (Medium) with network attack vector, req...