25 matches found
EUVD-2025-22493
Malicious code in bioql PyPI...
EUVD-2025-9878
Malicious code in bioql PyPI...
WordPress FunnelCockpit Cross-Site Scripting Vulnerability
WordPress FunnelCockpit is an open source tool for tracking and analyzing the entire process of lead generation from initial contact to final closing, developed on the WordPress platform. WordPress FunnelCockpit suffers from a cross-site scripting vulnerability that stems from insufficient input...
CVE-2025-6588
The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all versions up to, and including, 1.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2025-6588
The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all versions up to, and including, 1.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2025-6588 FunnelCockpit <= 1.4.3 - Reflected Cross-Site Scripting via `error` Parameter
The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all versions up to, and including, 1.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2025-6588 FunnelCockpit <= 1.4.3 - Reflected Cross-Site Scripting via `error` Parameter
The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all versions up to, and including, 1.4.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
WordPress plugin FunnelCockpit 跨站脚本漏洞
WordPress FunnelCockpit is an open source tool for tracking and analyzing the entire process of lead generation from initial contact to final closing, developed on the WordPress platform. WordPress FunnelCockpit suffers from a cross-site scripting vulnerability that stems from insufficient input...
PT-2025-30652 · WordPress · Funnelcockpit
Name of the Vulnerable Software and Affected Versions: FunnelCockpit plugin for WordPress versions up to and including 1.4.2 Description: The plugin is susceptible to Reflected Cross-Site Scripting via the error parameter due to insufficient input sanitization and output escaping. This allows...
CVE-2025-47678
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit funnelcockpit allows Reflected XSS.This issue affects FunnelCockpit: from n/a through = 1.4.3...
CVE-2025-47678
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit funnelcockpit allows Reflected XSS.This issue affects FunnelCockpit: from n/a through = 1.4.3...
CVE-2025-47678 WordPress FunnelCockpit plugin <= 1.4.3 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit funnelcockpit allows Reflected XSS.This issue affects FunnelCockpit: from n/a through = 1.4.3...
CVE-2025-47678 WordPress FunnelCockpit plugin <= 1.4.3 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit funnelcockpit allows Reflected XSS.This issue affects FunnelCockpit: from n/a through = 1.4.3...
CVE-2025-47678
CVE-2025-47678 affects the WordPress FunnelCockpit plugin. According to the records, FunnelCockpit versions up to 1.4.2 are vulnerable to Reflected Cross-Site Scripting caused by improper input neutralization during web page generation. The CVE entry itself does not specify a patch or mitigation....
PT-2025-22778 · Unknown · Funnelcockpit
Name of the Vulnerable Software and Affected Versions: FunnelCockpit versions 1.4.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. Specifically, it is a Reflected XSS vulnerability. This means...
WordPress plugin FunnelCockpit 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...
WordPress FunnelCockpit plugin <= 1.4.3 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by domiee13 in WordPress Plugin FunnelCockpit versions = 1.4.3...
CVE-2025-32132
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit funnelcockpit allows Stored XSS.This issue affects FunnelCockpit: from n/a through = 1.4.3...
CVE-2025-32132
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit funnelcockpit allows Stored XSS.This issue affects FunnelCockpit: from n/a through = 1.4.3...
CVE-2025-32132 WordPress FunnelCockpit Plugin <= 1.4.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FunnelCockpit FunnelCockpit allows Stored XSS. This issue affects FunnelCockpit: from n/a through 1.4.2...