CVE-2022-3763

The Booster for WooCommerce WordPress plugin before 5.6.7, Booster Plus for WooCommerce WordPress plugin before 5.6.5, Booster Elite for WooCommerce WordPress plugin before 1.1.7 do not have CSRF check in place when deleting files uploaded at the checkout, allowing attackers to make a logged in shop manager or admin delete them via a CSRF attack

CVSS v3 8.1 HIGH

8.1^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://wpscan.com/vulnerability/7ab15530-8321-487d-97a5-1469b51fcc3f	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:booster:booster_for_woocommerce:::::elite:wordpress::
	cpe:2.3:a:booster:booster_for_woocommerce:::::plus:wordpress::
	cpe:2.3:a:booster:booster_for_woocommerce::::::wordpress::*

History

07 Nov 2023, 03:51

Type	Values Removed	Values Added
CWE	~~CWE-352~~

Information

Published : 2022-11-21 11:15

Updated : 2024-02-28 19:51

NVD link : CVE-2022-3763

Mitre link : CVE-2022-3763

CVE.ORG link : CVE-2022-3763

JSON object : View

Products Affected

booster

booster_for_woocommerce

CWE

No CWE.

{"id": "CVE-2022-3763", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 5.2, "exploitabilityScore": 2.8}]}, "published": "2022-11-21T11:15:21.107", "references": [{"url": "https://wpscan.com/vulnerability/7ab15530-8321-487d-97a5-1469b51fcc3f", "tags": ["Exploit", "Third Party Advisory"], "source": "contact@wpscan.com"}], "vulnStatus": "Modified", "descriptions": [{"lang": "en", "value": "The Booster for WooCommerce WordPress plugin before 5.6.7, Booster Plus for WooCommerce WordPress plugin before 5.6.5, Booster Elite for WooCommerce WordPress plugin before 1.1.7 do not have CSRF check in place when deleting files uploaded at the checkout, allowing attackers to make a logged in shop manager or admin delete them via a CSRF attack"}, {"lang": "es", "value": "El complemento de WordPress Booster para WooCommerce anterior a 5.6.7, el complemento de WordPress Booster Plus para WooCommerce anterior a 5.6.5, el complemento de WordPress Booster Elite para WooCommerce anterior a 1.1.7 no tienen verificaci\u00f3n CSRF al eliminar archivos cargados en la caja, lo que permite a los atacantes hacer que un administrador o administrador de la tienda que haya iniciado sesi\u00f3n los elimine mediante un ataque CSRF"}], "lastModified": "2023-11-07T03:51:46.637", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:booster:booster_for_woocommerce:*:*:*:*:elite:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "C11EE041-6F7D-41A2-9CDF-0E23734B21D4", "versionEndExcluding": "1.1.7"}, {"criteria": "cpe:2.3:a:booster:booster_for_woocommerce:*:*:*:*:plus:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "3DDF2125-27BC-4444-8021-B2FCE2907F93", "versionEndExcluding": "5.6.5"}, {"criteria": "cpe:2.3:a:booster:booster_for_woocommerce:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "E968BF40-54EE-45C0-989E-7CDA3934E9B8", "versionEndExcluding": "5.6.7"}], "operator": "OR"}]}], "sourceIdentifier": "contact@wpscan.com"}