FunnelKit Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit
Moderate fix1 remedy
cpe:2.3:a:funnelkit:funnelkit_automations:*:*:*:*:wordpress:*:*
Moderate fix1 remedy
- <= 3.5.3
FunnelKit WooCommerce Cart Abandonment Plugin Missing Authorization Vulnerability Allowing Unauthenticated Arbitrary Plugin Installation
Vulnerability
Patched
A vulnerability exists in the FunnelKit plugin for WordPress, specifically in the Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, and Marketing Automation components, all versions through 3.5.3. The issue arises from a lack of proper capability checks in the 'install_or_activate_addon_plugins' function, combined with a weak nonce hash. This flaw enables unauthenticated attackers to install arbitrary plugins on the site, potentially leading to further infections.
Impact
Exploitation of this vulnerability allows for unauthorized installation of plugins, which could be used to compromise the site further.
Remediation
Users are advised to update the FunnelKit WordPress plugin to version 3.6.0 or later.
Added: Jun 18, 2025, 8:17 AM
Updated: Jun 18, 2025, 8:17 AM
Vulnerability Rating
Custom Algorithm
spread
3.4impact
2.5exploitability
8.2remediation
7.7relevance
0.2threat
3.6urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.