WPFunnels: Critical RCE Vulnerability (CVE-2026-14345, CVSS 9.8)


This text was generated using artificial intelligence (AI).On July 7, 2026, a critical vulnerability was discovered in the WordPress plugin WPFunnels published, which have a CVSS score of 9.8 has been assessed. The gap, documented as CVE-2026-14345 (according to Wordfence CNA), this vulnerability allows attackers to execute arbitrary code on the server (Remote Code Execution, RCE). All plugin versions up to and including 3.12.7 are affected. A security update to version 3.12.8 is available and should be installed immediately.

Are my systems affected? Check now →