Known Vulnerabilities for Cart All In One For Woocommerce by Villatheme
Listed below are 1 of the newest known vulnerabilities associated with "Cart All In One For Woocommerce" by "Villatheme".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57698 json | Authentication Bypass Using an Alternate Path or Channel vulnerability in VillaTheme Abandoned Cart Recovery for WooCommerce ... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-57637 json | Unauthenticated Cross Site Request Forgery (CSRF) in Abandoned Cart Lite for WooCommerce <= 6.8.0 versions. | Not Provided | 2026-06-26 | 2026-06-26 |
| CVE-2026-56010 json | Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce <= 10.4.0 versions. | Not Provided | 2026-06-26 | 2026-06-26 |
| CVE-2026-39470 json | Shop manager Privilege Escalation in WooCommerce Cart Abandonment Recovery < 2.1.0 versions. | Not Provided | 2026-06-15 | 2026-06-15 |
| CVE-2026-24526 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Steve Truman Email Inqu... | Not Provided | 2026-01-23 | 2026-04-28 |
| CVE-2026-12585 json | The Abandoned Cart Lite for WooCommerce WordPress plugin before 6.8.2 does not protect the integrity of its cart-recovery tok... | Not Provided | 2026-07-16 | 2026-07-16 |
| CVE-2026-11387 json | The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress is vulnerable... | Not Provided | 2026-07-01 | 2026-07-01 |
| CVE-2025-68025 json | Missing Authorization vulnerability in Addonify Addonify Floating Cart For WooCommerce addonify-floating-cart allows Exploiti... | Not Provided | 2026-02-20 | 2026-04-27 |
| CVE-2025-66109 json | Missing Authorization vulnerability in Octolize Shipping Plugins Cart Weight for WooCommerce woo-cart-weight allows Exploitin... | Not Provided | 2025-11-21 | 2026-04-27 |
| CVE-2025-64222 json | Missing Authorization vulnerability in FantasticPlugins WooCommerce Recover Abandoned Cart rac allows Exploiting Incorrectly ... | Not Provided | 2025-12-18 | 2026-04-27 |