VYPR

ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution

by Hasthemes

CVEs (4)

  • CVE-2026-1714HigFeb 18, 2026
    risk 0.49cvss 8.6epss 0.01

    The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'send_to', 'product_title',…

  • CVE-2024-1057MedApr 20, 2024
    risk 0.35cvss 6.4epss 0.00

    The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +10 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wishsuite_button' shortcode in all versions up to, and including, 2.8.1…

  • CVE-2024-1960MedApr 9, 2024
    risk 0.35cvss 6.4epss 0.01

    The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Special Offer Day Widget Banner Link in all versions up to, and including, 2.8.1…

  • CVE-2025-11823Oct 25, 2025
    risk 0.00cvss epss 0.00

    The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'button_exist_text' parameter in the 'wishsuite_button' shortcode in all versions up to, and including,…