CVE-2025-10567

CVE-2025-10567 : FunnelKit Funnel Builder for WooCommerce Checkout (WordPress plugin) before 3.12.0.1 is vulnerable to reflected XSS in checkout-related AJAX actions due to unsanitized user input echoed back to responses. The issue affects logged-in users and is documented across multiple sources...