Is CVE-2026-57635 being exploited?

No public exploit is currently tracked.

How severe is CVE-2026-57635?

CVE-2026-57635 has a CVSS v3 severity of MEDIUM (6.5).

Back

Description

Unauthenticated Cross Site Request Forgery (CSRF) in FunnelKit Payment Gateway for Stripe WooCommerce <= 1.14.0.3 versions.