Dossier
WooCommerce
Coverage of WooCommerce in the Nexus archive.
- Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
A critical security vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to steal payment data from WooCommerce checkout pages. The vulnerability allows malicious JavaScript code to be injected into these pages. Details of the activity were published by Sansec.
- Funnel Builder WordPress plugin bug exploited to steal credit cards
A critical vulnerability in the Funnel Builder plugin for WordPress is being exploited to inject malicious JavaScript into WooCommerce checkout pages, potentially stealing credit card information. The bug is actively being used by attackers, putting users' sensitive data at risk. The issue highlights the importance of keeping WordPress plugins up-to-date.