Unrated severityNVD Advisory· Published May 15, 2025· Updated May 16, 2025
WooCommerce Checkout & Funnel Builder by FunnelKit < 3.10.2 - Admin+ SQL Injection
CVE-2025-2203
Description
The FunnelKit WordPress plugin before 3.10.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/d553cff4-074a-44e7-aebe-e61c86ab8042/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.