Log out
Get PRO

Latest

Input validation vulnerability in Booster for WooCommerce 7.2.4

  • Severity: high-risk
  • Status: Fixed
  • Publication: April 3, 2025

The Booster for WooCommerce plugin for WordPress has a security issue in versions 4.0.1 to 7.2.4. This vulnerability allows attackers to insert their own malicious code into pages through SVG file uploads. This can happen even if the user is not logged in, making it a serious threat.

Detected in:

Booster for WooCommerce fixed vulnerable versions: >= 4.0.1 <= 7.2.4
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools fixed vulnerable versions:
Booster for WooCommerce – PDF Invoices, Bulk Price Editor, Currency Switcher & 100+ Tools fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.