CVE-2023-2986

CRITICAL EXPLOITED NUCLEI

Tychesoftwares Abandoned Cart Lite Fo... - Authentication Bypass

Title source: rule

Description

The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.14.2. This is due to insufficient encryption on the user being supplied during the abandoned cart link decode through the plugin. This allows unauthenticated attackers to log in as users who have abandoned the cart, who are typically customers. Further security hardening was introduced in version 5.15.1 that ensures sites are no longer vulnerable through historical check-out links, and additional hardening was introduced in version 5.15.2 that ensured null key values wouldn't permit the authentication bypass.

Exploits (2)

nomisec WORKING POC 6 stars

by Ayantaker · remote

https://github.com/Ayantaker/CVE-2023-2986

View Code ZIP pw:eip

nomisec WORKING POC

by Alucard0x1 · remote

https://github.com/Alucard0x1/CVE-2023-2986

View Code ZIP pw:eip

Nuclei Templates (1)

Abandoned Cart Lite for WooCommerce - Authentication Bypass

CRITICALVERIFIEDby iamnoooob,pdresearch

FOFA: body="/wp-content/plugins/woocommerce-abandoned-cart/"

References (8)

[Various Sources] https://github.com/Ayantaker/CVE-2023-2986

[Patch] https://plugins.trac.wordpress.org/browser/woocommerce-abandoned-cart/trunk/woocommerce-ac.php#L1815

[Patch] https://plugins.trac.wordpress.org/browser/woocommerce-abandoned-cart/trunk/woocommerce-ac.php?rev=2916178#L1800

[Patch] https://plugins.trac.wordpress.org/changeset/2922242/

[Product] https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2925274%40woocommerce-abandoned-cart&new=2925274%40woocommerce-abandoned-cart&sfp_email=&sfph_mail=

[Third Party Advisory] https://www.wordfence.com/threat-intel/vulnerabilities/id/68052614-204f-4237-af0e-4b8210ebd59f?source=cve

[Issue Tracking] https://github.com/TycheSoftwares/woocommerce-abandoned-cart/pull/885#issuecomment-1601813615

[Third Party Advisory] https://www.wordfence.com/blog/2023/06/tyche-softwares-addresses-authentication-bypass-vulnerability-in-abandoned-cart-lite-for-woocommerce-wordpress-plugin/

Scores

CVSS v3 9.8

EPSS 0.9142

EPSS Percentile 99.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-06-23

CWE

CWE-288

Status published

Products (2)

tychesoftwares/Abandoned Cart Lite for WooCommerce < 5.15.1

tychesoftwares/abandoned_cart_lite_for_woocommerce < 5.14.2

Published Jun 08, 2023

Tracked Since Feb 18, 2026