CVE-2024-1057
published 2024-04-20CVE-2024-1057: The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +10 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to…
PriorityP424medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.32%
23.7th percentile
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +10 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wishsuite_button' shortcode in all versions up to, and including, 2.8.1 due to insufficient input sanitization and output escaping on user supplied attributes like 'button_class'. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| devitemsllc | shoplentor_all-in-one_woocommerce_growth_store_enhancement_plugin | <= 2.8.1 | — |
| hasthemes | shoplentor | < 2.8.2 | 2.8.2 |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jppj-cfrj-8qw6: The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +10 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerab
ghsa_unreviewed·2024-04-20
CVE-2024-1057 [MEDIUM] CWE-79 GHSA-jppj-cfrj-8qw6: The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +10 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerab
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +10 Modules – All in One Solution (formerly WooLentor) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wishsuite_button' shortcode in all versions up to, and including, 2.8.1 due to insufficient input sanitization and output escaping on user supplied attributes like 'button_class'. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Red Hat
kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
vendor_redhat·2025-04-16·CVSS 7.8
CVE-2025-22020 [HIGH] CWE-416 kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
In the Linux kernel, the following vulnerability has been resolved:
memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
This fixes the following crash:
BUG: KASAN: slab-use-after-free in rtsx_usb_ms_poll_card+0x159/0x200 [rtsx_usb_ms]
Read of size 8 at addr ffff888136335380 by task kworker/6:0/140241
CPU: 6 UID: 0 PID: 140241 Comm: kworker/6:0 Kdump: loaded Tainted: G E 6.14.0-rc6+ #1
Tainted: [E]=UNSIGNED_MODULE
Hardware name: LENOVO 30FNA1V7CW/1057, BIOS S0EKT54A 07/01/2024
Workqueue: events rtsx_usb_ms_poll_card [rtsx_usb_ms]
Call Trace:
dump_stack_lvl+0x51/0x70
print_address_description.constprop.0+0x27/0x320
? rtsx_usb_ms_poll_card+0x159/0x200 [rtsx_usb_ms]
print_report+0x3e/0x70
ka
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2025-22020 kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
bugzilla·2025-04-16·CVSS 7.8
CVE-2025-22020 [HIGH] CVE-2025-22020 kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
CVE-2025-22020 kernel: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
In the Linux kernel, the following vulnerability has been resolved:
memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove
This fixes the following crash:
BUG: KASAN: slab-use-after-free in rtsx_usb_ms_poll_card+0x159/0x200 [rtsx_usb_ms]
Read of size 8 at addr ffff888136335380 by task kworker/6:0/140241
CPU: 6 UID: 0 PID: 140241 Comm: kworker/6:0 Kdump: loaded Tainted: G E 6.14.0-rc6+ #1
Tainted: [E]=UNSIGNED_MODULE
Hardware name: LENOVO 30FNA1V7CW/1057, BIOS S0EKT54A 07/01/2024
Workqueue: events rtsx_usb_ms_poll_card [rtsx_usb_ms]
Call Trace:
dump_stack_lvl+0x51/0x70
print_address_description.constprop.0+0x27/0x320
? rtsx_usb_ms_poll_card+0x159/0x200 [rtsx_usb_ms]
print_
Bugzilla
CVE-2024-1657 ansible automation platform: Insecure websocket used when interacting with EDA server
bugzilla·2024-02-20·CVSS 8.1
CVE-2024-1657 [HIGH] CVE-2024-1657 ansible automation platform: Insecure websocket used when interacting with EDA server
CVE-2024-1657 ansible automation platform: Insecure websocket used when interacting with EDA server
Insecure websocket being used in installation if you have access to any of the machines in the CIDR block you could just pull all rulebook data from that websocket, you could just download it
Discussion:
This issue has been addressed in the following products:
Red Hat Ansible Automation Platform 2.4 for RHEL 9
Red Hat Ansible Automation Platform 2.4 for RHEL 8
Via RHSA-2024:1057 https://access.redhat.com/errata/RHSA-2024:1057
Bugzilla
CVE-2024-24680 Django: denial-of-service in ``intcomma`` template filter
bugzilla·2024-01-30·CVSS 7.5
CVE-2024-24680 [HIGH] CVE-2024-24680 Django: denial-of-service in ``intcomma`` template filter
CVE-2024-24680 Django: denial-of-service in ``intcomma`` template filter
The ``intcomma`` template filter was subject to a potential denial-of-service
attack when used with very long strings.
Refer:
https://www.djangoproject.com/security/
Discussion:
Created python-django tracking bugs for this issue:
Affects: epel-all [bug 2263504]
Affects: fedora-all [bug 2263505]
Affects: openstack-rdo [bug 2263507]
Created python-django3 tracking bugs for this issue:
Affects: fedora-all [bug 2263506]
---
This issue has been addressed in the following products:
Red Hat Ansible Automation Platform 2.4 for RHEL 9
Red Hat Ansible Automation Platform 2.4 for RHEL 8
Via RHSA-2024:1057 https://access.redhat.com/errata/RHSA-2024:1057
---
This issue has been addressed in the following products:
R
Bugzilla
CVE-2022-40896 pygments: ReDoS in pygments
bugzilla·2023-11-27·CVSS 5.5
CVE-2022-40896 [MEDIUM] CVE-2022-40896 pygments: ReDoS in pygments
CVE-2022-40896 pygments: ReDoS in pygments
A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.
Discussion:
Created python-pip tracking bugs for this issue:
Affects: fedora-all [bug 2253941]
---
Created mingw-python-pygments tracking bugs for this issue:
Affects: fedora-all [bug 2259081]
Created python-pygments tracking bugs for this issue:
Affects: fedora-all [bug 2259082]
Created python-pygments2 tracking bugs for this issue:
Affects: epel-all [bug 2259080]
---
This issue has been addressed in the following products:
Red Hat Ansible Automation Platform 2.4 for RHEL 9
Red Hat Ansible Automation Platform 2.4 for RHEL 8
Via RHSA-2024:1057 https://access.redhat.com/errata/RHSA-2024:1057
---
This issue has been addressed in t
https://plugins.trac.wordpress.org/changeset/3044764/woolentor-addons/tags/2.8.2/includes/modules/wishlist/includes/templates/wishsuite-button-add.phphttps://www.wordfence.com/threat-intel/vulnerabilities/id/b6d8212d-7e72-487d-a4e8-0582fa72f602?source=cvehttps://plugins.trac.wordpress.org/changeset/3044764/woolentor-addons/tags/2.8.2/includes/modules/wishlist/includes/templates/wishsuite-button-add.phphttps://www.wordfence.com/threat-intel/vulnerabilities/id/b6d8212d-7e72-487d-a4e8-0582fa72f602?source=cve
2024-04-20
Published