Vulnerabilities > Clickfunnels

DATE CVE VULNERABILITY TITLE RISK
2023-08-16 CVE-2022-4782 Unspecified vulnerability in Clickfunnels
The ClickFunnels WordPress plugin through 3.1.1 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.
network
low complexity
clickfunnels
5.4
2023-05-24 CVE-2022-47152 Unspecified vulnerability in Clickfunnels
Cross-Site Request Forgery (CSRF) vulnerability in Etison, LLC ClickFunnels plugin <= 3.1.1 versions.
network
low complexity
clickfunnels
8.8