Vulnerability Database

318,003

Total vulnerabilities in the database

CVE-2022-4017

The Booster for WooCommerce WordPress plugin before 6.0.1, Booster Plus for WooCommerce WordPress plugin before 6.0.1, Booster Elite for WooCommerce WordPress plugin before 6.0.1 have either flawed CSRF checks or are missing them completely in numerous places, allowing attackers to make logged in users perform unwanted actions via CSRF attacks

Published: Jan 23, 2023
Updated: Nov 16, 2025
CVE: CVE-2022-4017
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
booster / booster_for_woocommerce	-	6.0.1
booster / booster_elite_woocommerce	-	6.0.1
booster / booster_plus_woocommerce	-	6.0.1

https://wpscan.com/vulnerability/609072d0-9bb9-4fe0-9626-7e4a334ca3a4

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo