CVE-2024-9186 - "FunnelKit WooCommerce SQL Injection Vulnerability"

1 week ago 6
ARTICLE AD BOX
CVE ID : CVE-2024-9186
Published : Nov. 14, 2024, 6:15 a.m. | 24 minutes ago
Description : The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit WordPress plugin before 3.3.0 does not sanitize and escape the bwfan-track-id parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article