Abandoned Cart Pro For Woocommerce CVEs and Security Vulnerabilities

Export limit exceeded: 361563 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-56010	2 Tychesoftwares, Wordpress	2 Abandoned Cart Pro For Woocommerce, Wordpress	2026-06-26	8.8 High
Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce <= 10.4.0 versions.
CVE-2019-25152	1 Tychesoftwares	2 Abandoned Cart Lite For Woocommerce, Abandoned Cart Pro For Woocommerce	2026-04-08	7.2 High
The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in user input that will execute on the admin dashboard.

Page 1 of 1.