CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/11/20 9:37 p.m.•4 views

CVE-2025-12878

The FunnelKit – Funnel Builder for WooCommerce Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the wfopphone shortcode in all versions up to, and including, 3.13.1.2. This is due to insufficient input sanitization and output escaping on the user-supplied default...

6.4CVSS5AI score0.00046EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15210

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00152EPSS

Exploits1References3

Patchstack•added 2025/08/18 9:48 p.m.•5 views

WordPress FunnelKit plugin <= 3.11.0.2 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by wesley wcraft in WordPress Plugin Funnel Builder by FunnelKit versions = 3.11.0.2...

8.8CVSS6.7AI score0.00102EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/05/23 2:49 a.m.•2 views

CVE-2023-50856

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in FunnelKit Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels & Maximize Profits.This issue affects Funnel Builder for WordPress by FunnelKit –...

7.6CVSS7.8AI score0.00139EPSS

Exploits0References1

NVD•added 2025/05/15 8:16 p.m.•12 views

CVE-2025-2203

The FunnelKit WordPress plugin before 3.10.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...

6.1CVSS0.00152EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by