The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to malicious code being placed on your website. If you have this plugin installed and are running a multi-site installation or have disabled the unfiltered_html setting, an attacker with administrator-level access can exploit the vulnerability to inject malicious code into pages on your website. This malicious code will execute every time a user visits an affected page. To protect your website, make sure you have the latest version of the plugin installed, which is 5.15.2 or higher.