Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) 2.8.4

  • Severity: medium-risk
  • Status: Fixed
  • Publication: April 4, 2024

A popular WordPress plugin called ShopLentor, also known as WooLentor, has a security vulnerability that allows hackers to insert harmful code into websites. This can happen through the plugin’s QR Code Widget, which is used to generate QR codes. This vulnerability affects all versions up to 2.8.4 and can be exploited by attackers with certain levels of access. This could potentially harm users who visit the affected pages.

Detected in:

ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +16 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +17 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +20 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution (formerly WooLentor) fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.