CVE-2023-6327 | ShopLentor Plugin up to 2.8.7 on WordPress purchased_new_products authorization

Posted by Angelo Barbosa | May 3, 2024 | CVE

A vulnerability was found in ShopLentor Plugin up to 2.8.7 on WordPress and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument purchased_new_products leads to missing authorization.

This vulnerability is handled as CVE-2023-6327. The attack may be launched remotely. There is no exploit available.

CVE-2023-6327 | ShopLentor Plugin up to 2.8.7 on WordPress purchased_new_products authorization

Related Posts

CVE-2024-30266 | wasmtime 19.0.0 extenref-typed Element Segment type confusion

CVE-2023-49442 | JEECG up to 4.0 HTTP POST Request jeecgFormDemoController deserialization

CVE-2024-24808 | pyLoad up to 0.4.20 get_redirect_url (fe94451)

CVE-2023-6923 | Matomo Plugin up to 4.15.3 on WordPress idsite cross site scripting