Home » Vulnerabilities » Input validation vulnerability in Easiest Sales Funnel Builder For WordPress & WooCommerce by WPFunnels 3.0.6

Latest

Input validation vulnerability in Easiest Sales Funnel Builder For WordPress & WooCommerce by WPFunnels 3.0.6

CVE-2024-27965

Severity: medium-risk
Status: Fixed
Publication: March 13, 2024

A popular plugin for WordPress and WooCommerce called WPFunnels has a security vulnerability that allows attackers to inject harmful scripts into web pages. This can happen if the plugin’s admin settings are not properly sanitized and escaped. Only multi-site installations and sites with certain security settings are at risk.

Detected in:

Easiest Funnel Builder For WordPress & WooCommerce by WPFunnels fixed vulnerable versions:

Easiest Funnel Builder For WordPress & WooCommerce, Specialized For Digital Creators – WPFunnels fixed vulnerable versions:

Easiest Sales Funnel Builder For WordPress & WooCommerce by WPFunnels fixed vulnerable versions:

Leads & Sales Funnel Builder For WordPress & WooCommerce, Specialized For Digital Creators – WPFunnels fixed vulnerable versions:

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Easiest Sales Funnel Builder For WordPress & WooCommerce by WPFunnels 3.0.6

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Easiest Sales Funnel Builder For WordPress & WooCommerce by WPFunnels 3.0.6

Detected in: