funnelforms

Top products

The 15 most recently published vulnerabilities affecting funnelforms.

• CVE-2025-62758WordPress Funnelforms Free plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability6.5Dec 31, 2025
• CVE-2025-68582WordPress Funnelforms Free plugin <= 3.8 - Broken Access Control vulnerability5.3Dec 24, 2025
• CVE-2024-10587Funnelforms Free <= 3.7.5.1 - Authenticated (Contributor+) PHP Object Injection8.8Dec 4, 2024
• CVE-2024-5857Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free <= 3.7.3.2 - Missing Authorization to Unauthenticated Arbitrary Media Deletion5.3Aug 29, 2024
• CVE-2024-7447Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free <= 3.7.3.2 - Missing Authorization to Unauthenticated Arbitrary Media Upload5.3Aug 28, 2024
• CVE-2024-6312Funnelforms Free <= 3.7.3.2 - Authenticated (Administrator+) Arbitrary File Deletion6.5Aug 28, 2024
• CVE-2024-6311Funnelforms Free <= 3.7.3.2 - Authenticated (Administrator+) Arbitrary File Upload7.2Aug 28, 2024
• CVE-2023-5990Funnelforms Free < 3.4.2 - Form Deletion/Duplication via CSRF6.5Dec 4, 2023
• CVE-2023-5385Funnelforms Free <= 3.4 - Missing Authorization to Arbitrary Post Duplication4.3Nov 22, 2023
• CVE-2023-5383Funnelforms Free <= 3.4 - Cross-Site Request Forgery to Arbitrary Post Duplication4.3Nov 22, 2023
• CVE-2023-5387Funnelforms Free <= 3.4 - Missing Authorization to Enable/Disable Dark Mode4.3Nov 22, 2023
• CVE-2023-5416Funnelforms Free <= 3.4 - Missing Authorization to Category Deletion4.3Nov 22, 2023
• CVE-2023-5411Funnelforms Free <= 3.4 - Missing Authorization to Post Modification4.3Nov 22, 2023
• CVE-2023-5382Funnelforms Free <= 3.4 - Cross-Site Request Forgery to Arbitrary Post Deletion6.5Nov 22, 2023
• CVE-2023-5415Funnelforms Free <= 3.4 - Missing Authorization to New Category Creation4.3Nov 22, 2023