Abandoned Cart Lite for WooCommerce

Vulnerabilities 22Slug woocommerce-abandoned-cartLatest version 6.7.0WordPress.org →

Minimum safe version

5.16.2

Update to 5.16.2 or later to address 22 fixable vulnerabilities

Latest available6.7.0 ✓

N/A

< 5.16.2

Abandoned Cart Lite for WooCommerce < 5.16.2 - Multiple CSRF

WPScan

N/A

< 5.16.1

Abandoned Cart Lite for WooCommerce < 5.16.1 - Improper Authorization via wcal_delete_expired_used_coupon_code

WPScan

N/A

< 5.16.1

Abandoned Cart Lite for WooCommerce < 5.16.1 - Improper Authorization via wcal_preview_emails

WPScan

N/A

< 5.8.3

WordPress Abandoned Cart Lite for WooCommerce Plugin <= 5.8.2 is vulnerable to SQL Injection

Patchstack

N/A

2023-12-01< 5.16.2

Abandoned Cart Lite for WooCommerce <= 5.16.1 - Cross-Site Request Forgery

Wordfence

Medium 5.4

2024-12-13< 5.16.2

CVE-2023-41671

CVE Patchstack Wordfence WPScan

N/A

2023-11-21< 5.16.1

Abandoned Cart Lite for WooCommerce <= 5.16.0 - Improper Authorization via wcal_preview_emails

Wordfence

N/A

2023-11-21< 5.16.1

Abandoned Cart Lite for WooCommerce <= 5.16.0 - Improper Authorization via wcal_delete_expired_used_coupon_code

Wordfence

Medium 5.9

2023-10-16< 5.16.0

CVE-2023-44986

CVE Patchstack Wordfence WPScan

N/A

< 1.9

Abandoned Cart Lite for WooCommerce < 1.9 - Authenticated Blind SQL Injection

WPScan

N/A

< 5.8.3

Abandoned Cart Lite for WooCommerce < 5.8.3 - Unauthenticated SQL Injection

WPScan

N/A

2023-05-22< 5.14.2

Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via delete_expired_used_coupon_code

Wordfence

N/A

2023-05-22< 5.14.2

Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via ts_reset_tracking_setting

Wordfence

Medium 4.3

2023-07-12< 5.8.6

CVE-2021-4414

CVE Wordfence

High 7.2

2023-06-22< 5.2.0

CVE-2019-25152

CVE Patchstack WPScan

N/A

2023-06-07< 5.8.6

CVE-2021-4342

CVE

Critical 9.8

2023-06-08< 5.15.0

CVE-2023-2986

CVE Wordfence Patchstack WPScan

N/A

2015-07-15< 1.9

Abandoned Cart Lite for WooCommerce < 1.9 - SQL Injection

Wordfence

N/A

2019-03-11< 5.2.0

Abandoned Cart Lite for WooCommerce < 5.2.0 and Abandoned Cart Pro for WooCommerce < 7.13.0 - Stored Cross-Site Scripting

Wordfence

N/A

< 5.8.6

Various Affected Software (Various Versions) - Cross-Site Request Forgery Bypass

Wordfence

N/A

2020-11-08< 5.8.3

Abandoned Cart Lite for WooCommerce <= 5.8.2 - SQL Injection

Wordfence

N/A

2021-03-01< 5.8.6

WordPress Abandoned Cart Lite for WooCommerce plugin <= 5.8.5 - Cross-Site Request Forgery (CSRF) vulnerability

Patchstack