FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce

Vulnerabilities 13Slug wp-marketing-automationsLatest version 3.8.0WordPress.org →

Minimum safe version

3.8.0

Update to 3.8.0 or later to address 13 fixable vulnerabilities

Latest available3.8.0 ✓

N/A

2026-04-22< 3.8.0

FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce <= 3.7.3 - Missing Authorization

Wordfence CVE

Medium 4.3

2025-11-05< 3.6.4.2

CVE-2025-12469

CVE Wordfence

Medium 5.3

2025-11-05< 3.6.4.2

CVE-2025-12468

CVE Wordfence

High 8.8

2025-08-19< 3.6.4

Multiple Plugins By FunnelKit <= (Various Versions) - Authenticated (Contributor+) Sensitive Information Exposure to Privilege Escalation via Woofunnel Library

EUVD Wordfence CVE

Critical 9.8

2025-06-18< 3.6.0

Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit <= 3.5.3 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation

EUVD Wordfence CVE

Medium 4.7

2025-06-17< 3.6.1

CVE-2025-49868

CVE EUVD Wordfence

Medium 4.7

2025-03-27< 3.5.2

CVE-2025-30795

CVE Wordfence EUVD

High 7.5

2025-03-24< 3.5.2

WordPress Automation By Autonami Plugin <= 3.5.1 is vulnerable to SQL Injection