Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) 2.8.7

  • Severity: medium-risk
  • Status: Fixed
  • Publication: May 3, 2024

The ShopLentor plugin, previously known as WooLentor, for WordPress has a security vulnerability. This means that people who are not authorized can access sensitive information. This vulnerability affects all versions of the plugin up to 2.8.7. It allows attackers who are not logged in to see all products that were purchased in the last week, as well as the names of the users who bought them.

Detected in:

ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +16 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +17 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +20 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.