CVE-2026-39440 - WordPress FunnelFormsPro plugin <= 3.8.1 - Remote Code Execution (RCE) vulnerability
CVE ID :CVE-2026-39440 Published : April 23, 2026, 1:16 p.m. | 32 minutes ago Description :Improper Control of Generation of Code ('Code Injection') vulnerability in Funnelforms LLC FunnelFormsPro allows Remote Code Inclusion.This issue affects FunnelFormsPro: from n/a through 3.8.1. Severi
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Apple Fixes the iPhone Bug That Cops Used to Extract Your Deleted Messages
- [CYBER] CVE-2026-41461 - SocialEngine <= 7.8.0 Blind SSRF via /core/link/preview
- [CYBER] CVE-2026-41460 - SocialEngine <= 7.8.0 SQL Injection via activity/index/get-memberall
- [CYBER] CVE-2026-35225 - Improper timeout handling in CODESYS EtherNetIP
- [CYBER] CVE-2025-70994 - Yadea T5 Electric Bicycles Keyless Entry Signal Forgery Vulnerability
- [CYBER] Circle economist outlines Aave proposal as USDC liquidity dries up after DeFi exploit - AMBCrypto