Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/04/27 7:0 a.m.19 views

CVE-2025-3743

The Upsell Funnel Builder for WooCommerce plugin for WordPress is vulnerable to order manipulation in all versions up to, and including, 3.0.0. This is due to the plugin allowing the additional product ID and discount field to be manipulated prior to processing via the 'addofferincart' function...

5.3CVSS6.9AI score0.00339EPSS
Exploits0References1
NVD
NVD
added 2025/04/25 7:15 a.m.13 views

CVE-2025-3743

The Upsell Funnel Builder for WooCommerce plugin for WordPress is vulnerable to order manipulation in all versions up to, and including, 3.0.0. This is due to the plugin allowing the additional product ID and discount field to be manipulated prior to processing via the 'addofferincart' function...

5.3CVSS0.00339EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/04/25 6:45 a.m.18 views

CVE-2025-3743 Upsell Funnel Builder for WooCommerce <= 3.0.0 - Unauthenticated Order Manipulation

The Upsell Funnel Builder for WooCommerce plugin for WordPress is vulnerable to order manipulation in all versions up to, and including, 3.0.0. This is due to the plugin allowing the additional product ID and discount field to be manipulated prior to processing via the 'addofferincart' function...

5.3CVSS0.00339EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/04/25 6:45 a.m.5 views

CVE-2025-3743 Upsell Funnel Builder for WooCommerce <= 3.0.0 - Unauthenticated Order Manipulation

The Upsell Funnel Builder for WooCommerce plugin for WordPress is vulnerable to order manipulation in all versions up to, and including, 3.0.0. This is due to the plugin allowing the additional product ID and discount field to be manipulated prior to processing via the 'addofferincart' function...

5.3CVSS7.1AI score0.00339EPSS
Exploits0References6
Rows per page
Query Builder