CVE-2023-52232 — Missing Authorization in LLC Booster Plus FOR Woocommerce

CWE-862 — Missing Authorization3 documents3 sources

Severity

6.5MEDIUMNVD

EPSS

0.2%

top 63.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Pluggabl LLC Booster Plus FOR Woocommerce Booster FOR Woocommerce

Timeline

PublishedJun 9

Description

Missing Authorization vulnerability in Pluggabl LLC Booster Plus for WooCommerce.This issue affects Booster Plus for WooCommerce: from n/a before 7.1.2.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5pluggabl_llc/booster_plus_for_woocommercen/a — 7.1.2

▶NVDbooster/booster< 7.1.2

🔴Vulnerability Details

CVEList

WordPress Booster Plus for WooCommerce plugin < 7.1.2 - Authenticated Arbitrary Post/Page Deletion Vulnerability↗2024-06-09

▶

GHSA

GHSA-8cw5-9cww-c669: Missing Authorization vulnerability in Pluggabl LLC Booster Plus for WooCommerce↗2024-06-09

▶