5 matches found
EUVD-2024-27888
Malicious code in bioql PyPI...
CVE-2024-2946
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution formerly WooLentor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's QR Code Widget in all versions up to, and including, 2.8.4 due to insufficient input sanitization...
CVE-2024-2946
CVE-2024-2946 concerns ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules (formerly WooLentor). Red Hat confirms a Stored Cross-Site Scripting vulnerability in the QR Code Widget affecting all versions up to 2.8.4 due to insufficient input sanitization and output escaping on u...
PT-2024-22911 · WordPress · Shoplentor
Name of the Vulnerable Software and Affected Versions: The ShopLentor plugin for WordPress versions up to, and including, 2.8.4 Description: The issue is related to Stored Cross-Site Scripting via the plugin's QR Code Widget due to insufficient input sanitization and output escaping on...
WordPress ShopLentor plugin <= 2.8.4 - Authenticated (Contributor+) Stored Cross-site Scripting via QR Code Widget vulnerability
Authenticated Contributor+ Stored Cross-site Scripting via QR Code Widget vulnerability discovered by Phuoc Pham p3tl0v3r in WordPress Plugin ShopLentor versions = 2.8.4...