IDCVSSSummaryLast (major) updatePublished
CVE-2021-24330 3.5
The Funnel Builder by CartFlows – Create High Converting Sales Funnels For WordPress plugin before 1.6.13 did not sanitise its facebook_pixel_id and google_analytics_id settings, allowing high privilege users to set XSS payload in them, which will
09-08-2023 - 17:12 01-06-2021 - 14:15
CVE-2019-25151 None
The Funnel Builder plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the activate_plugin function in versions up to, and including, 1.3.0. This makes it possible for authenticated attackers to activate an
09-08-2023 - 17:12 07-06-2023 - 02:15
CVE-2020-36736 None
The WooCommerce Checkout & Funnel Builder by CartFlows plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.15. This is due to missing or incorrect nonce validation on the export_json, import_json, an
09-08-2023 - 17:12 01-07-2023 - 04:15
Back to Top Mark selected
Back to Top