Countdown And Countup, Woocommerce Sales Timer@* Security Vulnerabilities and Issues — Countdown And Countup, Woocommerce Sales Timer@* CVE List

Lucene search

WpdevartCountdown And Countup, Woocommerce Sales Timer*

2 matches found

CVE•added 2023/11/14 9:15 p.m.•66 views

CVE-2023-47533

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in wpdevart Countdown and CountUp, WooCommerce Sales Timer plugin

5.9CVSS5.1AI score0.00135EPSS

CVE•added 2021/09/28 2:15 p.m.•33 views

CVE-2021-34636

The Countdown and CountUp, WooCommerce Sales Timers WordPress plugin is vulnerable to Cross-Site Request Forgery via the save_theme function found in the ~/includes/admin/coundown_theme_page.php file due to a missing nonce check which allows attackers to inject arbitrary web scripts, in versions up...

8.8CVSS8.6AI score0.00109EPSS