CVE-2025-23699

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in techmix Event Countdown Timer Plugin by TechMix event-countdown-timer allows Reflected XSS.This issue affects Event Countdown Timer Plugin by TechMix: from n/a through = 1.4...

CVE-2025-23699

CVE-2025-23699 — Reflected XSS in TechMix Event Countdown Timer Plugin for WordPress (Event Countdown Timer by TechMix). Affected: Plugin versions up to 1.4 (and possibly n/a), vulnerable code path during web page generation allowing Reflected XSS. CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L; ...