Share
## https://sploitus.com/exploit?id=35161DDA-E309-58E1-AD86-ED6412A51641
# CVE-2021-34646
**PoC for CVE-2021-34646**

## Exploit Title: WordPress Plugin WooCommerce Booster Plugin 5.4.3 - Authentication Bypass
- Date: 2021-09-16
- Exploit Author: Sebastian Kriesten (0xB455)
- Contact: https://twitter.com/0xB455

- Affected Plugin: Booster for WooCommerce
- Plugin Slug: woocommerce-jetpack
- Vulnerability disclosure: https://www.wordfence.com/blog/2021/08/critical=-authentication-bypass-vulnerability-patched-in-booster-for-woocommerce/
- Affected Versions: <= 5.4.3
- Fully Patched Version: >= 5.4.4
- CVE: CVE-2021-34646
- CVSS Score: 9.8 (Critical)
- Category: webapps