PT-2024-39910 · WordPress · T(-) Countdown

Name of the Vulnerable Software and Affected Versions: T- Countdown plugin for WordPress versions up to, and including, 2.4.8 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the tminus shortcode, allowing authenticated attacker...

PT-2024-32840 · WordPress · Jquery T(-) Countdown Widget

Name of the Vulnerable Software and Affected Versions: jQuery T- Countdown Widget plugin for WordPress versions up to, and including, 2.3.25 Description: The issue is related to Stored Cross-Site Scripting via the plugin's tminus shortcode due to insufficient input sanitization and output escapin...