Funnel Builder WordPress plugin bug exploited to steal credit cards
A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into WooCommerce checkout pages.
Grace Ops
CONTENT OPTIMIZATION · AEO/GEO
Score Card
citation-worthiness 0–10036
/ 100
The page surfaces the right headline but is too thin and circular to be citation-worthy — the body text largely restates the title, has no named technical detail, no statistics, no author, and the "real-world impact" block adds no information LLMs can extract.
- Direct answer10/20
- Statistics2/20
- Structure7/15
- Authority3/15
- Freshness11/15
- Topical depth3/15
Topic Tracks
suggested topics built on this incidentaudit trail / provenance1
Provenance
Claims tie surfaced fields back to sources, models, or heuristics.
- severity.upliftheuristicn/aActive exploitation / in-the-wild language detected — floor raised to at least high.
What changed
Append-only revisions when ingest or analysts evolve the record.
No revision rows stored yet.
Sources
Brief grounded in 1 source.
discussion
Sign in to join the thread and vote on comments.
Loading comments…