Description

WordPress Plugin One Click Upsell Funnel for WooCommerce is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin One Click Upsell Funnel for WooCommerce version 2.0.0 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.0.2 or latest

References

https://plugins.svn.wordpress.org/woo-one-click-upsell-funnel/trunk/README.txt

Related Vulnerabilities

WordPress Plugin Trashbin 'mtb_undelete' Parameter Cross-Site Scripting (0.1)

WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder Security Bypass (1.7.14)

WordPress Plugin VK All in One Expansion Unit Cross-Site Scripting (9.85.0.1)

WordPress Plugin Sendit WP Newsletter 'submit.php' Blind SQL Injection (1.5.9)

WordPress Plugin Discount Rules for WooCommerce Security Bypass (2.2.0)

Severity

High

Tags

Missing Update