GCVE - cpe:2.3:a:adam_skaat:countdown_&_clock_(wordpress

Approved changes feed: RSS · Atom

cpe:2.3:a:adam_skaat:countdown_&_clock_(wordpress_plugin):*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Adam Skaat (`9b042ebb-121c-511a-bcab-34382bed6704`)
Product	Countdown & Clock (Wordpress Plugin) (`8f875234-86b9-550a-b120-428108efd675`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-29423`	vulnerable	2026-06-03 14:46:57.783485	WordPress Countdown & Clock plugin <= 2.3.2 - Pro Features Lock Bypass vulnerability LOW (3.8) Pro Features Lock Bypass vulnerability in Countdown & Clock plugin <= 2.3.2 at WordPress. Published: 2022-05-06T17:40:41.844Z Updated: 2026-04-28T16:07:41.319Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/countdown-builder/#developers https://patchstack.com/database/vulnerability/countdown-builder/wordpress-countdown-clock-plugin-2-3-0-pro-features-lock-bypass-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-29422`	vulnerable	2026-06-03 14:46:57.783006	WordPress Countdown & Clock plugin <= 2.3.2 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities MEDIUM (4.8) Multiple Authenticated (admin+) Persistent Cross-Site Scripting (XSS) vulnerabilities in Adam Skaat's Countdown & Clock plugin <= 2.3.2 at WordPress via &ycd-countdown-width, &ycd-progress-height, &ycd-progress-width, &ycd-button-margin-top, &ycd-button-margin-right, &ycd-button-margin-bottom, &ycd-button-margin-left, &ycd-circle-countdown-before-countdown, &ycd-circle-countdown-after-countdown vulnerable parameters. Published: 2022-05-06T17:37:28.491Z Updated: 2026-04-28T16:07:41.267Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/countdown-builder/#developers https://patchstack.com/database/vulnerability/countdown-builder/wordpress-countdown-clock-plugin-2-3-0-multiple-authenticated-persistent-cross-site-scripting-xss-vulnerabilities	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-29421`	vulnerable	2026-06-03 14:46:57.782511	WordPress Countdown & Clock plugin <= 2.3.2 - Reflected Cross-Site Scripting (XSS) vulnerability MEDIUM (4.7) Reflected Cross-Site Scripting (XSS) vulnerability in Adam Skaat's Countdown & Clock plugin on WordPress via &ycd_type vulnerable parameter. Published: 2022-05-06T16:58:42.534Z Updated: 2026-04-28T16:07:41.419Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/countdown-builder/ https://patchstack.com/database/vulnerability/countdown-builder/wordpress-countdown-clock-plugin-2-3-0-stored-cross-site-scripting-xss-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-29420`	vulnerable	2026-06-03 14:46:57.780431	WordPress Countdown & Clock plugin <= 2.3.2 - Auth. Stored Cross-Site Scripting (XSS) vulnerability MEDIUM (5.9) Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Adam Skaat Countdown & Clock (WordPress plugin) countdown-builder allows Stored XSS.This issue affects Countdown & Clock (WordPress plugin): from n/a through 2.3.2. Published: 2022-05-06T16:53:30.706Z Updated: 2026-04-28T16:07:41.290Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/countdown-builder/wordpress-countdown-clock-plugin-2-3-1-authenticated-stored-cross-site-scripting-xss-vulnerability	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Countdown & Clock (Wordpress Plugin)

PURL mappings

Vulnerability references

Contribute