Description
WordPress Plugin Booster Plus for WooCommerce is prone to multiple cross-site request forgery vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Booster Plus for WooCommerce version 6.0.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.0.1 or latest
References
Related Vulnerabilities
MySQL CVE-2016-0663 Vulnerability (CVE-2016-0663)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2017-9120)
WordPress Plugin Post Views Counter Cross-Site Scripting (1.3.4)
Python Out-of-bounds Read Vulnerability (CVE-2019-15903)
WordPress Plugin Elementor Website Builder Cross-Site Scripting (2.9.8)