CVE-2023-52230 — Missing Authorization in LLC Booster Plus FOR Woocommerce

CWE-862 — Missing Authorization3 documents3 sources

Severity

6.5MEDIUMNVD

EPSS

0.5%

top 33.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Pluggabl LLC Booster Plus FOR Woocommerce Booster FOR Woocommerce

Timeline

PublishedJun 9

Description

Missing Authorization vulnerability in Pluggabl LLC Booster Plus for WooCommerce.This issue affects Booster Plus for WooCommerce: from n/a before 7.1.3.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5pluggabl_llc/booster_plus_for_woocommercen/a — 7.1.3

▶NVDbooster/booster7.1.3

🔴Vulnerability Details

GHSA

GHSA-7rxg-g96w-25cm: Missing Authorization vulnerability in Pluggabl LLC Booster Plus for WooCommerce↗2024-06-09

▶

CVEList

WordPress Booster Plus for WooCommerce plugin < 7.1.3 - Authenticated Arbitrary WordPress Option Disclosure Vulnerability↗2024-06-09

▶