VYPR

WP Flipclock

by WordPress

CVEs (2)

  • CVE-2025-39540MedApr 16, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rhys Wynne WP Flipclock wp-flipclock allows DOM-Based XSS.This issue affects WP Flipclock: from n/a through <= 1.9.1.

  • CVE-2023-23728MedMar 23, 2023
    risk 0.42cvss 6.5epss 0.00

    Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Winwar Media WP Flipclock plugin <= 1.7.4 versions.