CVE-2024-3957

Name of the Vulnerable Software and Affected Versions The Booster for WooCommerce plugin versions up to, and including, 7.1.8

Description The issue allows unauthenticated attackers to execute arbitrary shortcodes. The severity and exploitability of this issue depend on what other plugins are installed and the shortcode functionality they provide.

Recommendations For versions up to, and including, 7.1.8, update to a version later than 7.1.8 to resolve the issue. As a temporary workaround, consider restricting access to shortcode functionality to minimize the risk of exploitation.