Unserialization Vulnerability in ShopLentor WordPress Plugin
CVE-2023-0232 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to track viewed products and user data, which could lead to PHP Object Injection.
Learn more about our Wordpress Pen Testing.