CVE-2025-14555 | Countdown Timer Plugin up to 2.7.7 on WordPress Shortcode wpdevart_countdown cross site scripting

Inserito da Angelo Barbosa | Gen 10, 2026 | CVE

A vulnerability was found in Countdown Timer Plugin up to 2.7.7 on WordPress. It has been rated as problematic. This vulnerability affects the function wpdevart_countdown of the component Shortcode Handler. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2025-14555. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-14555 | Countdown Timer Plugin up to 2.7.7 on WordPress Shortcode wpdevart_countdown cross site scripting

Post correlati

CVE-2024-53847 | basecamp trix up to 1.3.2/2.1.8 cross site scripting

CVE-2023-48800 | Totolink X6000R 9.4.0cu.852_B20230719 snprintf Privilege Escalation

CVE-2025-14225 | D-Link DCS-930L 1.15.04 alphapd /setSystemAdmin AdminID command injection

CVE-2024-3700 | Estomed Simple Care hard-coded credentials