Log out
Get PRO

Latest

Access violation vulnerability in WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce 1.3.0

  • Severity: medium-risk
  • Status: Fixed
  • Publication: November 7, 2019

The Funnel Builder plugin for WordPress has a security issue in versions up to 1.3.0. This issue could allow someone with access to the WordPress site, such as an authenticated user, to activate any plugin they wish, without permission. This could result in the attacker gaining unwanted access or control over the WordPress site. It is important to update the Funnel Builder plugin to the newest version in order to prevent this from happening.

Detected in:

CartFlows – Checkout & Funnel Builder for WooCommerce fixed vulnerable versions:
WooCommerce Checkout & Funnel Builder by CartFlows fixed vulnerable versions:
WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce fixed vulnerable versions: >= * <= 1.3.0

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.