The Abandoned Cart Lite plugin for WordPress is vulnerable to a type of attack called Cross-Site Request Forgery in all versions up to, and including, 5.16.1. This means that attackers who are not logged in may be able to do things like dismiss notifications and change template statuses if they can fool a site administrator into clicking on a link. To protect your site, you should ensure that you have the latest version of the plugin installed.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)
