The OoohBoi Steroids for Elementor WordPress plugin prior to 2.1.5 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber to delete attachment.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ooohboi steroids for elementor project ooohboi steroids for elementor |