A vulnerability was found in ShopLentor Plugin up to 2.8.7 on WordPress and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument purchased_new_products leads to missing authorization.
This vulnerability is handled as CVE-2023-6327. The attack may be launched remotely. There is no exploit available.