Shoplentor

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:hasthemes:shoplentor:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorHasthemes (d368bab3-bc4f-5819-9d32-f6fb06c04453)
ProductShoplentor (3a7bc79e-a590-5f61-adbe-98fb646a34e0)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/elementor/elementor purl2cpe 2026-06-01 10:17:01.834301

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-34767 vulnerable 2026-06-03 14:55:55.257024 WordPress ShopLentor plugin <= 2.8.7 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes ShopLentor allows Stored XSS.This issue affects ShopLentor: from n/a through 2.8.7.
Published: 2024-06-03T11:36:31.590Z
Updated: 2026-04-28T16:09:50.189Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-47172 vulnerable 2026-06-03 14:48:27.010447 WordPress WooLentor Plugin <= 2.6.2 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLentor plugin <= 2.6.2 versions.
Published: 2023-07-17T14:36:11.962Z
Updated: 2026-04-28T16:07:57.105Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-46798 vulnerable 2026-06-03 14:48:26.484057 WordPress WooLentor Plugin <= 2.5.1 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (5.4)
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLentor plugin <= 2.5.1 leading to plugin settings change.
Published: 2023-03-01T14:00:13.903Z
Updated: 2026-04-28T16:07:54.499Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.