3 matches found
CVE-2025-1562
The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the installoractivateaddonplugins function and a weak nonce hash in all...
CVE-2025-1562
creationtimestamp| type| source ---|---|--- 2025-06-18 07:42:51+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18693 2025-06-18 08:30:50+00:00| seen| Telegram/HqM6uK2LXU7SXVlPrFtYJtTUa7IPac-02SpDf6naVT-Dl2k 2025-06-18 11:03:16+00:00| seen|...
WordPress FunnelKit Automations plugin <= 3.5.3 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation vulnerability
Missing Authorization to Unauthenticated Arbitrary Plugin Installation vulnerability discovered by mikemyers in WordPress Plugin FunnelKit Automations versions = 3.5.3...