HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce, CVE-2026-24392

CVE, Research URL: CVE-2026-24392
Home page URL: Security reports for HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce
Application: HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce
Published on: Feb 19, 2026
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nabil Lemsieh HurryTimer hurrytimer allows Stored XSS.This issue affects HurryTimer: from n/a through <= 2.14.2.
Affected versions: max 2.14.2.
Status: vulnerable

HurryTimer &#8211; An Scarcity and Urgency Countdown Timer for WordPress &amp; WooCommerce, CVE-2026-24392