CVE-2021-34646

CRITICAL

Booster for WooCommerce <= 5.4.3 - Authentication Bypass via Email Verification Token Weakness

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2021-34646. PoCs published by 0xB455, motikan2010.

AI-analyzed exploit summary This exploit leverages an authentication bypass vulnerability in the WooCommerce Booster Plugin by generating multiple timestamps to craft a valid verification token, allowing unauthorized access to user accounts.

Description

Versions up to, and including, 5.4.3, of the Booster for WooCommerce WordPress plugin are vulnerable to authentication bypass via the process_email_verification function due to a random token generation weakness in the reset_and_mail_activation_link function found in the ~/includes/class-wcj-emails-verification.php file. This allows attackers to impersonate users and trigger an email address verification for arbitrary accounts, including administrative accounts, and automatically be logged in as that user, including any site administrators. This requires the Email Verification module to be active in the plugin and the Login User After Successful Verification setting to be enabled, which it is by default.

Exploits (3)

exploitdb WORKING POC
by 0xB455 · pythonwebappsphp
https://www.exploit-db.com/exploits/50299

This exploit leverages an authentication bypass vulnerability in the WooCommerce Booster Plugin by generating multiple timestamps to craft a valid verification token, allowing unauthorized access to user accounts.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Booster for WooCommerce <= 5.4.3
No auth needed
Prerequisites: Target URL · User ID
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 2 stars
by motikan2010 · poc
https://github.com/motikan2010/CVE-2021-34646

This repository contains a functional Python script that exploits an authentication bypass vulnerability in the Booster for WooCommerce WordPress plugin (CVE-2021-34646). The exploit leverages weak random token generation in the email verification process to impersonate arbitrary users, including administrators.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Booster for WooCommerce WordPress plugin (versions up to and including 5.4.3)
No auth needed
Prerequisites: Email Verification module must be active · Login User After Successful Verification setting must be enabled (default)
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC 1 stars
by 0xB455 · poc
https://github.com/0xB455/CVE-2021-34646

This repository contains a functional exploit for CVE-2021-34646, an authentication bypass vulnerability in the WooCommerce Booster Plugin. The exploit generates multiple timed tokens to bypass authentication by leveraging a predictable MD5 hash mechanism.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Booster for WooCommerce <= 5.4.3
No auth needed
Prerequisites: Target URL with vulnerable plugin installed · User ID to bypass authentication
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 9.8
EPSS 0.5087
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-290 CWE-330
Status published
Products (1)
booster/booster_for_woocommerce < 5.4.3
Published Aug 30, 2021
Tracked Since Feb 18, 2026