Dossier
Sansec
Coverage of Sansec in the Nexus archive.
- Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
A critical security vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to steal payment data from WooCommerce checkout pages. The vulnerability allows malicious JavaScript code to be injected into these pages. Details of the activity were published by Sansec.