Funnelforms Free
N/A
Developer
N/A
Latest version
N/A
Installations
N/A
Last updated
Vulnerability history
3 present
9 patched
4 Mitigation rules
- WordPress Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor - Funnelforms Free plugin <= 3.7.3.2 - Missing Authorization to Unauthenticated Arbitrary Media Deletion vulnerability<= 3.7.3.2Feb 2, 2026
- Cross Site Scripting (XSS) vulnerability<= 3.8Dec 31, 2025
- Broken Access Control vulnerability<= 3.8Dec 25, 2025
- Authenticated (Contributor+) PHP Object Injection vulnerability<= 3.7.5.1Dec 3, 2024
- Missing Authorization to Unauthenticated Arbitrary Media Upload and Deletion vulnerability<= 3.7.3.2Aug 28, 2024
- Authenticated (Administrator+) Arbitrary File Deletion vulnerability<= 3.7.3.2Aug 28, 2024
- Authenticated (Administrator+) Arbitrary File Upload vulnerability<= 3.7.3.2Aug 28, 2024
- Cross-Site Request Forgery to Arbitrary Post Duplication vulnerability<= 3.4Nov 2, 2023
- Cross-Site Request Forgery to Arbitrary Post Deletion vulnerability<= 3.4Nov 2, 2023
- Multiple Missing Authorization vulnerability<= 3.4Nov 2, 2023
- Unauthenticated Stored Cross-Site Scripting vulnerability< 3.4Sep 19, 2023
- WordPress Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor - Funnelforms Free plugin < 3.3.8.5 - Reflected Cross Site Scripting (XSS) vulnerability< 3.3.8.5Jul 18, 2023