Unserialization Vulnerability in ShopLentor WordPress Plugin

Unserialization Vulnerability in ShopLentor WordPress Plugin

CVE-2023-0232 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to track viewed products and user data, which could lead to PHP Object Injection.

Learn more about our Wordpress Pen Testing.