First published: Fri May 06 2022(Updated: )
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Adam Skaat's Countdown & Clock plugin <= 2.3.2 at WordPress via &ycd-circle-countdown-before-countdown and &ycd-circle-countdown-after-countdown vulnerable parameters.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Edmonsoft Countdown Builder | <=2.3.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.