CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0232 – ShopLentor < 2.5.4 - PHP Object Injection
https://notcve.org/view.php?id=CVE-2023-0232
28 Jan 2023 — The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to track viewed products and user data, which could lead to PHP Object Injection. The WooLentor plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.5.3 via deserialization of untrusted input in the function woolentor_set_views_count, which unserializes a user-provided cookie. This allows unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerab... • https://plugins.trac.wordpress.org/changeset/2852711/woolentor-addons/trunk/includes/helper-function.php • CWE-502: Deserialization of Untrusted Data •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0231 – ShopLentor < 2.5.4 - Contributor+ Stored XSS
https://notcve.org/view.php?id=CVE-2023-0231
28 Jan 2023 — The ShopLentor WordPress plugin before 2.5.4 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The WooLentor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in versions up to, and including, 2.5.3 due to insufficient input sanitization and output escaping on user supplied attribute... • https://wpscan.com/vulnerability/533c19d5-219c-4389-a8bf-8b3a35b33b20 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •