cleantalk
Vulnerabilities and Security Researches

OoohBoi Steroids for Elementor, CVE-2023-0336

CVE, Research URL

CVE-2023-0336

Home page URL

Security reports for OoohBoi Steroids for Elementor

Application

OoohBoi Steroids for Elementor

Published on
Mar 27, 2023
Research Description
The OoohBoi Steroids for Elementor WordPress plugin before 2.1.5 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber to delete attachment.
Affected versions
max 2.1.5.
Status
vulnerable
Previous vulnerability researches
OoohBoi Steroids for Elementor (CVE-2023-1169) , Jun 07, 2024
OoohBoi Steroids for Elementor (CVE-2023-0336) , Jun 07, 2024
New vulnerability
Security & Malware scan by CleanTalk , Apr 03, 2026
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System – Booking Calendar (CVE-2025-68515) , Mar 31, 2026