CVE-2026-12585
The CVE-2026-12585 describes a vulnerability in the Abandoned Cart Lite for WooCommerce WordPress plugin (versions before 6.8.2). The root cause is failure to protect the integrity of cart-recovery tokens and failure to bind them to the requesting account, enabling unauthenticated attackers to fo...