Woolentor - Woocommerce Elementor Addons + Builder Security Vulnerabilities and Issues — Woolentor - Woocommerce Elementor Addons + Builder CVE List

Lucene search

HasthemesWoolentor - Woocommerce Elementor Addons + Builder

4 matches found

CVE•added 2023/07/17 3:15 p.m.•47 views

CVE-2022-47172

Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLentor plugin <= 2.6.2 versions.

8.8CVSS6.4AI score0.0006EPSS

CVE•added 2021/05/05 7:15 p.m.•43 views

CVE-2021-24262

The “WooLentor – WooCommerce Elementor Addons + Builder” WordPress Plugin before 1.8.6 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.

5.4CVSS5.2AI score0.00222EPSS

CVE•added 2023/03/01 3:15 p.m.•35 views

CVE-2022-46798

Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLentor plugin <= 2.5.1 leading to plugin settings change.

5.4CVSS5.5AI score0.00041EPSS

CVE•added 2024/09/25 5:15 a.m.•34 views

CVE-2024-8668

The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the tooltip and countdown functionality in all versions up to, and including, 2.9.7 due to insufficient input s...

6.4CVSS5.5AI score0.00024EPSS