CVE-2026-1714

{"id": "CVE-2026-1714", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "security@wordfence.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}]}, "published": "2026-02-18T05:16:27.327", "references": [{"url": "https://plugins.trac.wordpress.org/browser/woolentor-addons/tags/3.3.1/classes/class.ajax_actions.php#L170", "source": "security@wordfence.com"}, {"url": "https://plugins.trac.wordpress.org/browser/woolentor-addons/tags/3.3.1/classes/class.ajax_actions.php#L189", "source": "security@wordfence.com"}, {"url": "https://plugins.trac.wordpress.org/browser/woolentor-addons/tags/3.3.1/classes/class.ajax_actions.php#L192", "source": "security@wordfence.com"}, {"url": "https://plugins.trac.wordpress.org/browser/woolentor-addons/trunk/classes/class.ajax_actions.php#L170", "source": "security@wordfence.com"}, {"url": "https://plugins.trac.wordpress.org/browser/woolentor-addons/trunk/classes/class.ajax_actions.php#L189", "source": "security@wordfence.com"}, {"url": "https://plugins.trac.wordpress.org/browser/woolentor-addons/trunk/classes/class.ajax_actions.php#L192", "source": "security@wordfence.com"}, {"url": "https://plugins.trac.wordpress.org/changeset/3461704/woolentor-addons/trunk/classes/class.ajax_actions.php?contextall=1", "source": "security@wordfence.com"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/cf326914-6a38-4984-a2a7-66e05f41a96b?source=cve", "source": "security@wordfence.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "security@wordfence.com", "description": [{"lang": "en", "value": "CWE-93"}]}], "descriptions": [{"lang": "en", "value": "The ShopLentor \u2013 WooCommerce Builder for Elementor & Gutenberg +21 Modules \u2013 All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'send_to', 'product_title', 'wlmessage', and 'wlemail' parameters in the 'woolentor_suggest_price_action' AJAX endpoint. This makes it possible for unauthenticated attackers to send arbitrary emails to any recipient with full control over the subject line, message content, and sender address (via CRLF injection in the 'wlemail' parameter), effectively turning the website into a full email relay for spam or phishing campaigns."}, {"lang": "es", "value": "El plugin ShopLentor \u2013 WooCommerce Builder for Elementor & Gutenberg +21 Modules \u2013 All in One Solution para WordPress es vulnerable a Abuso de Retransmisi\u00f3n de Correo Electr\u00f3nico en todas las versiones hasta la 3.3.2, inclusive. Esto se debe a la falta de validaci\u00f3n en los par\u00e1metros 'send_to', 'product_title', 'wlmessage' y 'wlemail' en el endpoint AJAX 'woolentor_suggest_price_action'. Esto hace posible que atacantes no autenticados env\u00eden correos electr\u00f3nicos arbitrarios a cualquier destinatario con control total sobre la l\u00ednea de asunto, el contenido del mensaje y la direcci\u00f3n del remitente (mediante inyecci\u00f3n CRLF en el par\u00e1metro 'wlemail'), convirtiendo eficazmente el sitio web en un retransmisor de correo electr\u00f3nico completo para campa\u00f1as de correo no deseado o phishing."}], "lastModified": "2026-02-18T17:51:53.510", "sourceIdentifier": "security@wordfence.com"}