CVE-2023-41671
- EPSS 0.2%
- Veröffentlicht 13.12.2024 15:15:23
- Zuletzt bearbeitet 13.12.2024 15:15:23
Missing Authorization vulnerability in Tyche Softwares Abandoned Cart Lite for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Abandoned Cart Lite for WooCommerce: from n/a through 5.16.1.
CVE-2023-44986
- EPSS 0.12%
- Veröffentlicht 16.10.2023 11:15:44
- Zuletzt bearbeitet 21.11.2024 08:26:11
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Tyche Softwares Abandoned Cart Lite for WooCommerce plugin <= 5.15.2 versions.
CVE-2021-4414
- EPSS 0.11%
- Veröffentlicht 12.07.2023 04:15:11
- Zuletzt bearbeitet 21.11.2024 06:37:39
The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.8.5. This is due to missing or incorrect nonce validation on the wcal_preview_emails() function. This makes i...
CVE-2019-25152
- EPSS 30.62%
- Veröffentlicht 22.06.2023 02:15:47
- Zuletzt bearbeitet 21.11.2024 04:39:59
The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insuffi...
CVE-2023-2986
- EPSS 91.64%
- Veröffentlicht 08.06.2023 02:15:09
- Zuletzt bearbeitet 21.11.2024 07:59:42
The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.14.2. This is due to insufficient encryption on the user being supplied during the abandoned cart link decode thro...