Vulnerability Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit.This issue affects Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit: from n/a through 2.6.1.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Funnelkit | Funnelkit Automations | <= 2.6.1 |
Related Weaknesses (CWE)
References
- https://patchstack.com/database/vulnerability/wp-marketing-automations/wordpressThird Party Advisory
- https://patchstack.com/database/vulnerability/wp-marketing-automations/wordpressThird Party Advisory
- https://patchstack.com/database/vulnerability/wp-marketing-automations/wordpressThird Party Advisory
FAQ
What is CVE-2023-50857?
CVE-2023-50857 is a vulnerability with a CVSS score of 7.6 (HIGH). Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation ...
How severe is CVE-2023-50857?
CVE-2023-50857 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-50857?
Check the references section above for vendor advisories and patch information. Affected products include: Funnelkit Funnelkit Automations.