Skip to main content

Ooohboi Steroids For Elementor

2 CVEs product

Monthly

CVE-2023-1169 MEDIUM PATCH This Month

The OoohBoi Steroids for Elementor plugin for WordPress is vulnerable to missing authorization due to a missing capability check on the 'file_uploader_callback' function in versions up to, and. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

WordPress Authentication Bypass Ooohboi Steroids For Elementor Elementor
NVD VulDB
CVSS 3.1
4.3
EPSS
0.1%
CVE-2023-0336 MEDIUM POC This Month

The OoohBoi Steroids for Elementor WordPress plugin before 2.1.5 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber to delete attachment. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress CSRF Ooohboi Steroids For Elementor
NVD WPScan
CVSS 3.1
6.5
EPSS
1.0%
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

The OoohBoi Steroids for Elementor plugin for WordPress is vulnerable to missing authorization due to a missing capability check on the 'file_uploader_callback' function in versions up to, and. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

WordPress Authentication Bypass Ooohboi Steroids For Elementor +1
NVD VulDB
EPSS 1% CVSS 6.5
MEDIUM POC This Month

The OoohBoi Steroids for Elementor WordPress plugin before 2.1.5 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber to delete attachment. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress CSRF Ooohboi Steroids For Elementor
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy