Our managed hosting team is always hard at work, fixing issues to keep our clients’ sites secure and running smoothly. Recently, we addressed a vulnerability in the ShopLentor plugin (formerly WooLentor), specifically a stored cross-site scripting (XSS) issue in versions up to 2.9.0. This flaw, identified as CVE-2024-5530, allowed authenticated users with contributor-level access to exploit the WL Product Horizontal Filter Widget to inject malicious scripts. By proactively resolving such vulnerabilities, we ensure our clients’ websites remain safe and functional, and we keep them informed about our ongoing efforts to protect their online presence.