Description
WordPress Plugin Booster Elite for WooCommerce is prone to multiple cross-site request forgery vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Booster Elite for WooCommerce version 6.0.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.0.1 or latest
References
Related Vulnerabilities
WordPress Plugin Simple Admin Language Change Security Bypass (2.0.1)
Oracle Database Server CVE-2011-0805 Vulnerability (CVE-2011-0805)
WordPress Plugin WP-FB-AutoConnect Multiple Cross-Site Request Forgery Vulnerabilities (4.0.5)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1864)
WordPress Plugin arcResBookingWidget Multiple Vulnerabilities (1.0)