cleantalk
Vulnerabilities and Security Researches

FunnelCockpit, CVE-2025-32132

CVE, Research URL

CVE-2025-32132

Home page URL

Security reports for FunnelCockpit

Application

FunnelCockpit

Published on
Apr 04, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FunnelCockpit FunnelCockpit allows Stored XSS. This issue affects FunnelCockpit: from n/a through 1.4.2.
Affected versions
Min -, max 1.4.2.
Status
vulnerable
Previous vulnerability researches
FunnelCockpit (CVE-2025-32132) , Apr 06, 2025
New vulnerability
Integration for WooCommerce and QuickBooks (CVE-2025-39600) , Apr 18, 2025
GB Gallery Slideshow (CVE-2025-32649) , Apr 18, 2025
Question Answer (CVE-2025-32646) , Apr 18, 2025
PropertyHive (CVE-2025-39577) , Apr 18, 2025
WP-BusinessDirectory – Business directory plugin for WordPress (CVE-2025-32630) , Apr 18, 2025