WordPress Plugin Vulnerabilities

WooCommerce Checkout & Funnel Builder by FunnelKit < 3.10.2 - Admin+ SQL Injection

Description

The plugin does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks

Proof of Concept

Affects Plugins

Plugin icon
funnel-builder
Fixed in 3.10.2

References

CVE
CVE-2025-2203

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
4.1 (medium)

Miscellaneous

Original Researcher
Francisco Alisson
Submitter
Francisco Alisson
Verified
Yes
WPVDB ID
d553cff4-074a-44e7-aebe-e61c86ab8042

Timeline

Publicly Published
2025-01-08 (about 11 months ago)
Added
2025-04-07 (about 8 months ago)
Last Updated
2025-04-07 (about 8 months ago)

Other

Published
Title
Published
2023-10-30
Title
Jquery news ticker < 3.1 - Authenticated (Subscriber+) SQL Injection via Shortcode
Published
2020-05-19
Title
Paid Memberships Pro < 2.3.3 - Authenticated SQL Injection
Published
2015-07-16
Title
NEX-Forms < 4.6.1 - Unauthenticated Blind SQL Injection
Published
2021-06-21
Title
Export Users With Meta < 0.6.5 - Admin+ SQLi
Published
2023-04-06
Title
Transbank Webpay REST < 1.6.7 - Admin+ SQLi