Abandoned Cart Lite for WooCommerce

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   Abandoned Cart Lite for WooCommerce

Information

Software Type Plugin
Software Slug woocommerce-abandoned-cart (view on wordpress.org)
Software Status Active
Software Author tychesoftwares
Software Website www.tychesoftwares.com
Software Downloads 977,500
Software Active Installs 30,000
Software Record Last Updated September 30, 2023

7 vulnerabilities

Abandoned Cart Lite for WooCommerce <= 5.15.1 - Authentication Bypass
9.8
CVE-2023-2986
Jun 6, 2023
Researchers: Lana Codes, Ayan Saha
Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via ts_reset_tracking_setting
4.3
CVE ID Unknown
May 22, 2023
Researchers:
Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via delete_expired_used_coupon_code
4.3
CVE ID Unknown
May 22, 2023
Researchers:
Abandoned Cart Lite for WooCommerce <= 5.8.5 - Cross-Site Request Forgery Bypass
4.3
CVE-2021-4414
Mar 1, 2021
Researcher: Jerome Bruandet
Abandoned Cart Lite for WooCommerce <= 5.8.2 - SQL Injection
9.8
CVE ID Unknown
Nov 8, 2020
Researcher: Slavco Mihajloski
Abandoned Cart Lite for WooCommerce < 5.2.0 and Abandoned Cart Pro for WooCommerce < 7.13.0 - Stored Cross-Site Scripting
7.2
CVE-2019-25152
Mar 11, 2019
Researchers:
Abandoned Cart Lite for WooCommerce < 1.9 - SQL Injection
8.8
CVE ID Unknown
Jul 15, 2015
Researcher: Marcin Probola
Title CVE ID CVSS Researchers Date
Abandoned Cart Lite for WooCommerce <= 5.15.1 - Authentication Bypass CVE-2023-2986 9.8 Lana Codes, Ayan Saha June 6, 2023
Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via ts_reset_tracking_setting 4.3 May 22, 2023
Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via delete_expired_used_coupon_code 4.3 May 22, 2023
Abandoned Cart Lite for WooCommerce <= 5.8.5 - Cross-Site Request Forgery Bypass CVE-2021-4414 4.3 Jerome Bruandet March 1, 2021
Abandoned Cart Lite for WooCommerce <= 5.8.2 - SQL Injection 9.8 Slavco Mihajloski November 8, 2020
Abandoned Cart Lite for WooCommerce < 5.2.0 and Abandoned Cart Pro for WooCommerce < 7.13.0 - Stored Cross-Site Scripting CVE-2019-25152 7.2 March 11, 2019
Abandoned Cart Lite for WooCommerce < 1.9 - SQL Injection 8.8 Marcin Probola July 15, 2015

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation