CVE-2025-12469
BaseFortify
Publication date: 2025-11-05
Last updated on: 2025-12-04
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| funnelkit | funnelkit_automations | to 3.6.4.2 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the FunnelKit Automations plugin for WordPress and WooCommerce, where the plugin fails to properly verify if a user is authorized to perform certain administrative actions in the 'bwfan_test_email' AJAX handler. The nonce (a security token) used for verification is publicly exposed to all visitors, including unauthenticated users, and the verification function accepts low-privilege authenticated users (such as Subscribers) who have this nonce. As a result, attackers with Subscriber-level access or higher can send arbitrary emails from the site with attacker-controlled subject and body content.
How can this vulnerability impact me? :
An attacker with Subscriber-level access or higher can exploit this vulnerability to send arbitrary emails from your site. This could lead to phishing attacks, spam distribution, or impersonation of legitimate site communications, potentially damaging your site's reputation and trustworthiness.