Does Evergreen Countdown Timer have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Evergreen Countdown Timer compatible with WordPress 6.8.5?

According to WordPress.org data, Evergreen Countdown Timer 2.0.8 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Evergreen Countdown Timer compatible with PHP 5.6+?

Evergreen Countdown Timer requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Evergreen Countdown Timer updated?

Evergreen Countdown Timer was last updated on May 7, 2025. Frequent updates are generally a positive security signal.

What is Evergreen Countdown Timer's security score?

Evergreen Countdown Timer has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Evergreen Countdown Timer Security & Risk Analysis

wordpress.org/plugins/intelly-countdown

Evergreen Countdown is a plugin built for marketers that need a reliable solution to use scarcity on their websites and landing pages.

2K active installs v2.0.8 PHP 5.6+ WP 2.7+ Updated May 7, 2025

countdown-timercountdownsevergreen-countdown-timerscarcityscarcity-builder

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Evergreen Countdown Timer Safe to Use in 2026?

Generally Safe

Score 92/100

Evergreen Countdown Timer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "intelly-countdown" plugin version 2.0.8 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The plugin demonstrates good practices by consistently using prepared statements for SQL queries (92%) and proper output escaping (99%). The absence of any recorded CVEs, unpatched vulnerabilities, or critical/high severity taint flows further strengthens this positive assessment. The limited attack surface, with only one shortcode and one cron event, both appearing to be protected by necessary checks (indicated by 0 unprotected entry points), suggests a well-contained functionality.

However, a key concern arises from the complete lack of capability checks reported in the static analysis. While nonce checks are present (1), the absence of capability checks means that even if a non-authenticated user can trigger a function, their permissions are not being explicitly verified. This could potentially lead to unauthorized access or actions if the shortcode or cron event is not adequately secured at the application level or if the underlying WordPress environment has misconfigurations. The bundled Select2 library, though not explicitly flagged as outdated and vulnerable in this report, is a common point of compromise in other contexts and warrants awareness.

In conclusion, the "intelly-countdown" plugin appears to be a relatively safe option, characterized by its robust handling of data and a clean vulnerability history. The primary area for improvement and potential risk lies in the reported absence of capability checks, which should be investigated and addressed to ensure that all functionalities are properly authorized. Otherwise, the plugin follows many good security practices.

Key Concerns

Missing capability checks

Vulnerabilities

None known

Evergreen Countdown Timer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Evergreen Countdown Timer Release Timeline

v2.0.8Current

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.1.7

v1.1.6

v1.1.5

v1.1.4

v1.1.3

v1.1.1

Code Analysis

Analyzed Mar 16, 2026

Evergreen Countdown Timer Code Analysis

Dangerous Functions

Raw SQL Queries

11 prepared

Unescaped Output

325 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select24.0.13

SQL Query Safety

92% prepared12 total queries

Output Escaping

99% escaped328 total outputs

Attack Surface

Evergreen Countdown Timer Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[ec] includes\core.php:56

WordPress Hooks 14

actionplugins_loadedincludes\classes\session\session.php:78

actionshutdownincludes\classes\session\session.php:109

actionicp_session_garbage_collectionincludes\classes\session\session.php:145

actionwpincludes\classes\session\session.php:155

filterwp_enqueue_scriptsincludes\classes\ui\Tabs.php:7

actionadmin_menuincludes\classes\ui\Tabs.php:9

filterplugin_action_linksincludes\classes\ui\Tabs.php:10

actionadmin_enqueue_scriptsincludes\classes\ui\Tabs.php:12

filtercron_schedulesincludes\classes\utils\Cron.php:11

actionicp_weekly_scheduled_eventsincludes\classes\utils\Tracking.php:8

filterwp_footerincludes\core.php:11

filteradmin_footerincludes\core.php:24

actionadmin_initincludes\install.php:20

actioninitindex.php:72

Scheduled Events 1

icp_session_garbage_collection

Maintenance & Trust

Evergreen Countdown Timer Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 7, 2025

PHP min version5.6

Downloads122K

Community Trust

Rating72/100

Number of ratings14

Active installs2K

Alternatives

Evergreen Countdown Timer Alternatives

Smart Countdown Scarcity

smart-countdown-scarcity

100

Display time-limited, product-specific sale banners on WooCommerce products to create urgency and increase conversions.

0 No CVEs

Countdown Timer Ultimate

countdown-timer-ultimate

100

A quick, easy way to add and display responsive Countdown timer on your website. Also work with Gutenberg shortcode block.

20K No CVEs

HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce

hurrytimer

Create unlimited urgency and scarcity countdown timers for WordPress and WooCommerce to boost conversions and sales instantly.

20K 5 CVEs

Countdown, Coming Soon, Maintenance – Countdown & Clock

countdown-builder

Countdown builder - Customizable Countdown Timer

10K 1 unpatched

Countdown Timer – Widget Countdown

widget-countdown

Countdown timer plugin is an nice tool to create and insert timers into your posts/pages and widgets.

10K 3 CVEs

Developer Profile

Evergreen Countdown Timer Developer Profile

Data443 Risk Mitigation, Inc.

11 plugins · 203K total installs

trust score

Avg Security Score

83/100

Avg Patch Time

411 days

View full developer profile

Detection Fingerprints

How We Detect Evergreen Countdown Timer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/intelly-countdown/assets/css/font-awesome.min.css/wp-content/plugins/intelly-countdown/assets/css/theme.css/wp-content/plugins/intelly-countdown/assets/css/admin-forms.css/wp-content/plugins/intelly-countdown/assets/css/all-themes.css/wp-content/plugins/intelly-countdown/assets/css/style.css/wp-content/plugins/intelly-countdown/assets/deps/starrr/starrr.js/wp-content/plugins/intelly-countdown/assets/deps/select2-4.0.13/select2.css/wp-content/plugins/intelly-countdown/assets/deps/select2-4.0.13/select2.full.js+11 more

Script Paths

/wp-content/plugins/intelly-countdown/assets/deps/moment/moment.js/wp-content/plugins/intelly-countdown/assets/js/icp.library.js/wp-content/plugins/intelly-countdown/assets/deps/starrr/starrr.js/wp-content/plugins/intelly-countdown/assets/deps/select2-4.0.13/select2.full.js/wp-content/plugins/intelly-countdown/assets/deps/qtip/jquery.qtip.min.js/wp-content/plugins/intelly-countdown/assets/deps/magnific/jquery.magnific-popup.js+4 more

Version Parameters

intelly-countdown/assets/css/font-awesome.min.css?v=intelly-countdown/assets/css/theme.css?v=intelly-countdown/assets/css/admin-forms.css?v=intelly-countdown/assets/css/all-themes.css?v=intelly-countdown/assets/css/style.css?v=intelly-countdown/assets/deps/starrr/starrr.js?v=intelly-countdown/assets/deps/select2-4.0.13/select2.css?v=intelly-countdown/assets/deps/select2-4.0.13/select2.full.js?v=intelly-countdown/assets/deps/qtip/jquery.qtip.min.js?v=intelly-countdown/assets/deps/magnific/magnific-popup.css?v=intelly-countdown/assets/deps/magnific/jquery.magnific-popup.js?v=intelly-countdown/assets/deps/moment/moment.js?v=intelly-countdown/assets/deps/datepicker/css/bootstrap-datetimepicker.css?v=intelly-countdown/assets/deps/datepicker/js/bootstrap-datetimepicker.js?v=intelly-countdown/assets/deps/colorpicker/css/bootstrap-colorpicker.min.css?v=intelly-countdown/assets/deps/colorpicker/js/bootstrap-colorpicker.min.js?v=intelly-countdown/assets/js/utility.js?v=intelly-countdown/assets/js/icp.library.js?v=intelly-countdown/assets/js/icp.plugin.js?v=

HTML / DOM Fingerprints

CSS Classes

icp-countdown-container

HTML Comments

Data Attributes

data-icp-countdown-id

JS Globals

ICP_PLUGIN_PREFIXICP_PLUGIN_NAMEICP_PLUGIN_VERSIONICP_PLUGIN_URIICP_PLUGIN_ASSETS_URIICP_PLUGIN_IMAGES_URI+2 more

REST Endpoints

/wp-json/intelly-countdown/v1/settings/wp-json/intelly-countdown/v1/countdown

Shortcode Output

<div class="icp-countdown-container"><div class="icp-countdown-clock">

FAQ