Log out
Get PRO

Latest

Input validation vulnerability in WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce 2.0.1

  • Severity: medium-risk
  • Status: Fixed
  • Publication: March 25, 2024

The WooCommerce Checkout & Funnel Builder by CartFlows is a plugin for WordPress that helps create successful online stores. However, it has been found to have a security vulnerability in all versions up to 2.0.1. This means that hackers with certain permissions can insert harmful code onto pages, which will run whenever someone accesses that page. This mostly affects websites with multiple sites and those that have disabled a certain security feature.

Detected in:

CartFlows – Checkout & Funnel Builder for WooCommerce fixed vulnerable versions:
WooCommerce Checkout & Funnel Builder by CartFlows fixed vulnerable versions:
WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce fixed vulnerable versions: >= * <= 2.0.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.