Hackers using cross-site scripting (XSS) flaw in abandoned cart plugin to take over vulnerable sites.
![shopping cart](https://zdnet1.cbsistatic.com/hub/i/2019/03/12/a6708833-a4a5-4498-8904-bc82fc4f58af/25f046bc73418dd105cc9c4557f5665e/shoppingcart.jpg)
WordPress-based shopping sites are under attack from a hacker group abusing a vulnerability in a shopping cart plugin to plant backdoors and take over vulnerable sites.
Attacks are currently ongoing, according to Defiant, the company behind Wordfence, a firewall plugin for WordPress sites.
Hackers are targeting WordPress sites that use the “Abandoned Cart Lite for WooCommerce,” a plugin installed on over 20,000 WordPress sites, according to the official WordPress Plugins repository.