ShopLentor

Unauthenticated ServerSide Request Forgery via URL Parameter vulnerability <= 3.1.2

Authenticated (Contributor+) Stored DOMBased CrossSite Scripting via Flash Sale Countdown Module vulnerability <= 3.1.0

Authenticated (Contributor+) Sensitive Information Exposure via WL: FAQ Widget Elementor Template vulnerability <= 2.9.8

Authenticated (Contributor+) DOMBased Stored CrossSite Scripting vulnerability <= 2.9.7

Authenticated (Contributor+) Stored CrossSite Scripting via WL Product Horizontal Filter Widget vulnerability <= 2.9.0