Lucene search
WpvulndbWPVDB-ID:FA6F48A2-60E1-4B4C-BD9D-1560DAFBDDB6HistoryJun 06, 2023 - 12:00 a.m.
Abandoned Cart Lite for WooCommerce < 5.15.0 - Authentication Bypass
2023-06-0600:00:00
wpscan.com
16
woocommerce
authentication
bypass
cryptographic
cart link
unauthenticated
attackers
customers
EPSS
0.003
Percentile
71.8%
The plugin does not use adequate cryptographic practices to secure its cart link decoding process, allowing unauthenticated attackers to bypass authentication and login as customers who have abandoned their carts.
Related
nvd
nvd
CVE-2023-2986
2023-06-08 02:15:09
zdt
zdt
openvas
openvas
wordfence
wordfence
Tyche Softwares Addresses Authentication Bypass Vulnerability in Abandoned Cart Lite for WooCommerce WordPress Plugin
2023-06-19 13:06:59
Wordfence Intelligence Weekly WordPress Vulnerability Report (June 5, 2023 to June 11, 2023)
2023-06-15 13:04:14
2023’s Critical WordPress Vulnerabilities and How They Work
2024-02-12 19:11:21
prion
prion
Authentication flaw
2023-06-08 02:15:00
osv
osv
CVE-2023-2986
2023-06-08 02:15:09
cvelist
cvelist
CVE-2023-2986
2023-06-08 01:56:22
cve
cve
CVE-2023-2986
2023-06-08 02:15:09
githubexploit
githubexploit
Exploit for CVE-2023-2986
2023-06-13 20:35:03
Exploit for CVE-2023-2986
2023-06-09 17:44:09
packetstorm
packetstorm
WordPress Abandoned Cart Lite For WooCommerce 5.14.2 Authentication Bypass
2023-06-19 00:00:00
WordPress Abandoned Cart Lite For WooCommerce 5.14.2 Authentication Bypass
2023-06-16 00:00:00
thn
thn