Lucene search
K

142 matches found

nvd
nvd
added 8 hours ago2 views

CVE-2026-57698

Authentication Bypass Using an Alternate Path or Channel vulnerability in VillaTheme Abandoned Cart Recovery for WooCommerce woo-abandoned-cart-recovery allows Authentication Abuse.This issue affects Abandoned Cart Recovery for WooCommerce: from n/a through = 1.1.12...

6.5CVSS
Exploits0References1
cvelist
cvelist
added 10 hours ago4 views

CVE-2026-57698 WordPress Abandoned Cart Recovery for WooCommerce plugin <= 1.1.12 - Broken Authentication vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in VillaTheme Abandoned Cart Recovery for WooCommerce woo-abandoned-cart-recovery allows Authentication Abuse.This issue affects Abandoned Cart Recovery for WooCommerce: from n/a through = 1.1.12...

6.5CVSS
Exploits0References1
cve
cve
added 10 hours ago7 views

CVE-2026-57698

CVE-2026-57698 affects the WordPress plugin Abandoned Cart Recovery for WooCommerce (woo-abandoned-cart-recovery), with versions up to and including 1.1.12. The issue is an Authentication Bypass/Authentication Abuse via an alternate path or channel, enabling unauthorized access as described in th...

6.5CVSS6.1AI score
Exploits0References1
nuclei
nuclei
added 14 hours ago18 views

Abandoned Cart Lite for WooCommerce < 5.2.0 - Cross-Site Scripting

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping. i...

7.2CVSS6.4AI score0.01353EPSS
Exploits1References4
patchstack
patchstack
added 5 days ago4 views

WordPress Abandoned Cart Recovery for WooCommerce plugin <= 1.1.12 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by she11f in WordPress Plugin Abandoned Cart Recovery for WooCommerce versions = 1.1.12...

6.5CVSS6.1AI score
Exploits0Affected Software1
nvd
nvd
added 2026/06/26 3:16 p.m.7 views

CVE-2026-57637

Unauthenticated Cross Site Request Forgery CSRF in Abandoned Cart Lite for WooCommerce = 6.8.0 versions...

4.3CVSS0.00107EPSS
Exploits0References1
nvd
nvd
added 2026/06/26 3:16 p.m.7 views

CVE-2026-56010

Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce = 10.4.0 versions...

8.8CVSS0.00378EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/26 2:53 p.m.35 views

CVE-2026-57637 WordPress Abandoned Cart Lite for WooCommerce plugin <= 6.8.0 - Cross Site Request Forgery (CSRF) vulnerability

Unauthenticated Cross Site Request Forgery CSRF in Abandoned Cart Lite for WooCommerce = 6.8.0 versions...

4.3CVSS0.00107EPSS
Exploits0References1
cve
cve
added 2026/06/26 2:53 p.m.12 views

CVE-2026-57637

CVE-2026-57637 applies to the WordPress Abandoned Cart Lite for WooCommerce plugin (versions

4.3CVSS5.8AI score0.00107EPSS
Exploits0References1
euvd
euvd
added 2026/06/26 2:53 p.m.7 views

EUVD-2026-39753

Unauthenticated Cross Site Request Forgery CSRF in Abandoned Cart Lite for WooCommerce = 6.8.0 versions...

4.3CVSS5.8AI score0.00107EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/26 2:53 p.m.6 views

CVE-2026-57637

Unauthenticated Cross Site Request Forgery CSRF in Abandoned Cart Lite for WooCommerce = 6.8.0 versions...

4.3CVSS5.8AI score0.00107EPSS
Exploits0References2
euvd
euvd
added 2026/06/26 2:52 p.m.4 views

EUVD-2026-39686

Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce = 10.4.0 versions...

8.8CVSS5.8AI score0.00378EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/26 2:52 p.m.32 views

CVE-2026-56010 WordPress Abandoned Cart Pro for WooCommerce plugin <= 10.4.0 - Privilege Escalation vulnerability

Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce = 10.4.0 versions...

8.8CVSS0.00378EPSS
Exploits0References1
cve
cve
added 2026/06/26 2:52 p.m.12 views

CVE-2026-56010

CVE-2026-56010 affects the WordPress plugin Abandoned Cart Pro for WooCommerce (versions

8.8CVSS5.8AI score0.00378EPSS
Exploits0References1
patchstack
patchstack
added 2026/06/26 12:30 p.m.6 views

WordPress Abandoned Cart Lite for WooCommerce plugin <= 6.8.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Abandoned Cart Lite for WooCommerce versions = 6.8.0...

4.3CVSS5.8AI score0.00107EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2026/06/19 8:22 a.m.5 views

WordPress Abandoned Cart Pro for WooCommerce plugin <= 10.4.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Austin Ginder in WordPress Plugin Abandoned Cart Pro for WooCommerce versions = 10.4.0...

8.8CVSS5.8AI score0.00378EPSS
Exploits0Affected Software1
cnvd
cnvd
added 2026/03/31 12:0 a.m.5 views

WordPress Plugin Abandoned Cart Recovery for WooCommerce Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. WordPress plugin Abandoned Cart Recovery for WooCommerce has a cross-site scripting vulnerabili...

7.1CVSS6AI score0.00175EPSS
Exploits0
redhatcve
redhatcve
added 2026/03/26 5:2 p.m.4 views

CVE-2026-32526

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VillaTheme Abandoned Cart Recovery for WooCommerce woo-abandoned-cart-recovery allows Stored XSS.This issue affects Abandoned Cart Recovery for WooCommerce: from n/a through = 1.1.10...

7.1CVSS5.8AI score0.00175EPSS
Exploits0References1
euvd
euvd
added 2026/03/25 6:31 p.m.10 views

EUVD-2026-15891

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VillaTheme Abandoned Cart Recovery for WooCommerce woo-abandoned-cart-recovery allows Stored XSS.This issue affects Abandoned Cart Recovery for WooCommerce: from n/a through = 1.1.10...

7.1CVSS5.8AI score0.00175EPSS
Exploits0References2
nvd
nvd
added 2026/03/25 5:17 p.m.5 views

CVE-2026-32526

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VillaTheme Abandoned Cart Recovery for WooCommerce woo-abandoned-cart-recovery allows Stored XSS.This issue affects Abandoned Cart Recovery for WooCommerce: from n/a through = 1.1.10...

7.1CVSS0.00175EPSS
Exploits0References1
Rows per page
Query Builder