Back to search
CVE-2022-4017
Published: Jan 23, 2023
Modified: Apr 2, 2025
PUBLISHED
Description
The Booster for WooCommerce WordPress plugin before 6.0.1, Booster Plus for WooCommerce WordPress plugin before 6.0.1, Booster Elite for WooCommerce WordPress plugin before 6.0.1 have either flawed CSRF checks or are missing them completely in numerous places, allowing attackers to make logged in users perform unwanted actions via CSRF attacks
| Vendor | Product | Versions |
|---|---|---|
Unknown | Booster for WooCommerce | affected 0 - < 6.0.1 |
Unknown | Booster Plus for WooCommerce | affected 0 - < 6.0.1 |
Unknown | Booster Elite for WooCommerce | affected 0 - < 6.0.1 |
References
https://wpscan.com/vulnerability/609072d0-9bb9-4fe0-9626-7e4a334ca3a4
exploit
vdb-entry
technical-description
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now