Understanding CVE-2026-12978: A Snapshot of the Threat The recent vulnerability CVE-2026-12978 highlights a critical risk for users of the FunnelKit WordPress plugin. This plugin, used widely in various hosting environments, presents a reflected XSS vulnerability affecting versions earlier than 3.15.0.6. If exploited, it can allow unauthorized attackers to execute scripts in users’ browsers, which could […]













