CVE-2023-0336

Description

The OoohBoi Steroids for Elementor WordPress plugin before 2.1.5 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber to delete attachment.

Related CPE's

a ooohboi_steroids_for_elementor_project ooohboi_steroids_for_elementor *****wordpress **

References

https://wpscan.com/vulnerability/ac74df9a-6fbf-4411-a501-97eba1ad1895

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io