Abandoned Cart Lite for WooCommerce Vulnerabilities
The Abandoned Cart Lite for WooCommerce WordPress plugin has 5 known security vulnerabilities, including 1 critical. The most recent was disclosed on December 1, 2023. Check whether your site runs an affected version below.
View Abandoned Cart Lite for WooCommerce on WordPress.orgSummary
Latest vulnerability disclosed on December 1, 2023.
Recommendation
WPSentry recommends extreme caution
Only run Abandoned Cart Lite for WooCommerce if it is updated to the latest patched release. This plugin has a history of 1 critical, potentially exploitable vulnerability. If you already use it, update immediately — or consider a safer alternative.
Is your site affected?
Run a free external scan to detect Abandoned Cart Lite for WooCommerce and 35+ other WordPress security checks — no login or plugin required.
Known Abandoned Cart Lite for WooCommerce vulnerabilities
- medium
Abandoned Cart Lite for WooCommerce <= 5.16.1 - Cross-Site Request Forgery
Affected versions: <=5.16.1Disclosed December 1, 2023 - medium
Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via delete_expired_used_coupon_code
Affected versions: <5.14.2Disclosed May 22, 2023 - medium
Abandoned Cart Lite for WooCommerce <= 5.14.1 - Cross-Site Request Forgery via ts_reset_tracking_setting
Affected versions: <5.14.2Disclosed May 22, 2023 - critical
Abandoned Cart Lite for WooCommerce <= 5.8.2 - SQL Injection
Affected versions: <=5.8.2Disclosed November 8, 2020 - high
Abandoned Cart Lite for WooCommerce < 1.9 - SQL Injection
Affected versions: <1.9Disclosed July 15, 2015
How to stay protected
Update promptly
Keep Abandoned Cart Lite for WooCommerce on its latest release — most vulnerabilities are fixed in newer versions.
Scan regularly
Run an external scan after every update to catch outdated or vulnerable software early.
Monitor continuously
Enable monitoring to get alerted the moment a new issue affects your stack.