Amans2k Funnelkit – Funnel Builder For Woocommerce Checkout

5 CVEs affecting Amans2k Funnelkit – Funnel Builder For Woocommerce Checkout. Latest disclosed: 2025-12-12. Critical: 0, High: 2.

Top CVEs affecting Amans2k Funnelkit – Funnel Builder For Woocommerce Checkout
CVESeverityScorePublishedSummary
CVE-2025-7654High8.82025-08-19Multiple FunnelKit plugins are vulnerable to Sensitive Information Exposure via the wf_get_cookie shortcode. This makes it possible for authenticated attackers…
CVE-2025-14169High7.52025-12-12The FunnelKit - Funnel Builder for WooCommerce Checkout plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'opid' parameter in all ve…
CVE-2025-12878Medium6.42025-11-19The FunnelKit – Funnel Builder for WooCommerce Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `wfop_phone` shortcode in all…
CVE-2024-5192Medium6.42024-06-29The Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells plugin for WordPres…
CVE-2024-6836Medium4.32024-07-24The Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells plugin for WordPres…