CVE-2023-50857

Mode C: CVE-2023-50857 is an SQL Injection in FunnelKit Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation by FunnelKit. Affected: Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation by FunnelKit up to version 2.6.1 (inclusi...

WordPress Plugin Funnel Builder for WordPress by FunnelKit SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Funnel...

PT-2023-31688 · WordPress · Funnelkit Funnel Builder

Name of the Vulnerable Software and Affected Versions: FunnelKit Funnel Builder for WordPress versions through 2.14.3 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitati...

WordPress Plugin Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

PT-2023-31689 · Funnelkit · Funnelkit Recover Woocommerce Cart Abandonment

Name of the Vulnerable Software and Affected Versions: FunnelKit Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit versions n/a through 2.6.1 Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL...

WordPress FunnelKit Checkout Plugin <= 3.10.3 is vulnerable to Arbitrary Content Deletion

Software FunnelKit Checkout Type Plugin Vulnerable versions = 3.10.3 Fixed in 3.11.0 OWASP Top 10 A1: Broken Access Control Classification Arbitrary Content Deletion CVE CVE-2023-51672 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 02d122ae661d Credits Dave Jong...

WordPress FunnelKit Checkout Plugin <= 3.10.3 is vulnerable to Settings Change

Software FunnelKit Checkout Type Plugin Vulnerable versions = 3.10.3 Fixed in 3.11.0 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2023-51670 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID f342e4f6141d Credits Dave Jong Patchstack Required...

WordPress FunnelKit Checkout Plugin <= 3.10.3 is vulnerable to Settings Change

Software FunnelKit Checkout Type Plugin Vulnerable versions = 3.10.3 Fixed in 3.11.0 OWASP Top 10 A1: Broken Access Control Classification Settings Change CVE CVE-2023-51671 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID f63332e6c6a9 Credits Dave Jong Patchstack Required...

WordPress Funnel Builder for WordPress by FunnelKit Plugin <= 2.14.3 is vulnerable to SQL Injection

Software Funnel Builder for WordPress by FunnelKit Type Plugin Vulnerable versions = 2.14.3 Fixed in 2.14.4 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-50856 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID b73a1107b7a1 Credits Muhammad Daffa Requir...