CVE-2025-8607

The CVE-2025-8607 applies to SlingBlocks – Gutenberg Blocks by FunnelKit (formerly WooFunnels) for WordPress. It describes a Stored Cross-Site Scripting vulnerability in the Countdown block attributes due to insufficient input sanitization and output escaping, exploitable by authenticated attacke...