CVE-2023-50856

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels & Maximize Profits.This issue affects Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels & Maximize Profits: from n/a through 2.14.3.
Configurations

Configuration 1 (hide)

cpe:2.3:a:funnelkit:funnel_builder:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 08:37

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.2
v2 : unknown
v3 : 7.6
References () https://patchstack.com/database/vulnerability/funnel-builder/wordpress-funnel-builder-for-wordpress-by-funnelkit-plugin-2-14-3-sql-injection-vulnerability?_s_id=cve - Third Party Advisory () https://patchstack.com/database/vulnerability/funnel-builder/wordpress-funnel-builder-for-wordpress-by-funnelkit-plugin-2-14-3-sql-injection-vulnerability?_s_id=cve - Third Party Advisory

04 Jan 2024, 19:21

Type Values Removed Values Added
CPE cpe:2.3:a:funnelkit:funnel_builder:*:*:*:*:*:wordpress:*:*
References () https://patchstack.com/database/vulnerability/funnel-builder/wordpress-funnel-builder-for-wordpress-by-funnelkit-plugin-2-14-3-sql-injection-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/funnel-builder/wordpress-funnel-builder-for-wordpress-by-funnelkit-plugin-2-14-3-sql-injection-vulnerability?_s_id=cve - Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.2
First Time Funnelkit
Funnelkit funnel Builder

28 Dec 2023, 11:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-28 11:15

Updated : 2024-11-21 08:37


NVD link : CVE-2023-50856

Mitre link : CVE-2023-50856

CVE.ORG link : CVE-2023-50856


JSON object : View

Products Affected

funnelkit

  • funnel_builder
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')