Vulnerability CVE-2023-0336


Published: 2023-03-27

Description:
The OoohBoi Steroids for Elementor WordPress plugin through 2.1.3 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber to delete attachment.

Type:

CWE-352

(Cross-Site Request Forgery (CSRF))

 References:
https://wpscan.com/vulnerability/ac74df9a-6fbf-4411-a501-97eba1ad1895

Copyright 2026, cxsecurity.com

 

Back to Top