cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-10780,https://securityvulnerability.io/vulnerability/CVE-2024-10780,Elementor Restaurant & Cafe Addon Vulnerable to Information Exposure,"The Restaurant & Cafe Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.9 via the 'narestaurant_elementor_template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from private or draft posts created by Elementor that they should not have access to.",Wordpress,Restaurant & Cafe Addon For Elementor,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-11-28T09:47:12.280Z,0
CVE-2024-9653,https://securityvulnerability.io/vulnerability/CVE-2024-9653,Food Ordering System Vulnerable to Reflected Cross-Site Scripting,"The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is prone to a reflected cross-site scripting vulnerability. This issue arises from insufficient input sanitization and output escaping for the 'action' parameter. Attackers can exploit this vulnerability to inject arbitrary web scripts into web pages. If users are tricked into clicking on a compromised link, the injected scripts can execute within their browsers, potentially leading to unauthorized access or data exposure. To mitigate risks, it is crucial for users to apply the latest security patches and validate their plugin versions.",Wordpress,Restaurant Menu – Food Ordering System – Table Reservation,6.1,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-11-20T05:32:28.023Z,0
CVE-2024-9240,https://securityvulnerability.io/vulnerability/CVE-2024-9240,Unprotected Cross-Site Scripting Vulnerability in Reservation plugin for WordPress,"The ReDi Restaurant Reservation plugin for WordPress exhibits a vulnerability related to Reflected Cross-Site Scripting due to inadequate escaping when using the add_query_arg function. This vulnerability allows unauthenticated attackers to manipulate URLs and inject arbitrary scripts into web pages. When victims execute actions, such as clicking on a malicious link, the injected scripts can be triggered, facilitating potential exploitation. Users of the ReDi plugin are advised to review their implementation and apply necessary security measures to mitigate risks associated with this vulnerability.",Wordpress,Redi Restaurant Reservation,6.1,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-10-17T02:06:03.971Z,0
CVE-2022-4974,https://securityvulnerability.io/vulnerability/CVE-2022-4974,Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes,"The Freemius SDK, utilized by numerous WordPress plugin and theme developers, is susceptible to security flaws that permit Cross-Site Request Forgery and information disclosure. This is attributed to the absence of adequate capability checks and nonce protection measures on critical functions such as _get_debug_log, _get_db_option, and _set_db_option. Versions of the Freemius SDK prior to 2.4.3 exhibit these vulnerabilities, making any WordPress plugin or theme utilizing these versions susceptible to exploitation.",Wordpress,"Yasr – Yet Another Star Rating Plugin For WordPress,Events Addon For Elementor,Fraud Prevention For WooCommerce And Edd,Gutenberg Blocks – Acf Blocks Suite,Ultimeter,Past Events Extension,Pootle Pagebuilder – WordPress Page Builder,Local Delivery Drivers For WooCommerce,Ultimate Gutenberg – Custom Block Templates,WP Required Taxonomies – Categories And Tags Mandatory,Featured Products First For WooCommerce – A Extension Of WooCommerce (WooCommerce Addon Plugin),Ssl Certificate – Free Ssl, Https By Ssl Zen,Streak Crm For Gmail For Contact Form 7 – WordPress Plugin,WordPress Dev Powers – Acf Color Coded Field Types Plugin,Dancepress (trwa),Product Size Charts Plugin For WooCommerce,WP My Admin Bar,A No-code Page Builder For Beautiful Performance-based Content,Localseomap,Easy Prayer,Adfoxly – Ad Manager, Adsense Ads & Ads.txt,WP Get Personal,Checkout With Cash App On Edd,Server Info,Custom WooCommerce Checkout Fields Editor,Krsp Frontend File Uploader,Panorama Viewer- Best Plugin To Display Panoramic Images/videos,Bulk Attachment Download,Autosave Net,Premmerce Wholesale Pricing For WooCommerce,Any Popup – Popup Forms, Optins & Ads,Checkout With Venmo On Edd,Payment Gateway Per Product For WooCommerce,Hqtheme Extra,Vit Website Reviews,WooCommerce Eu Vat Assistant,WordPress Slider Block Gutenslider,Hucommerce | Magyar WooCommerce Kiegészítések,Kvoucher,Video Player For Youtube,Error Log Monitor,Slidedeck: Responsive WordPress Slider Plugin,Premmerce Multi-currency For WooCommerce,Booking Addon For WooCommerce,WP Event Partners – WordPress Plugin For Event And Conference Management,Wc Shop Sync – Square Payment Gateway For WooCommerce, Inventory Sync Between Square And WooCommerce, Ultimate WooCommerce Square Plugin,Add Expires Headers & Optimized Minify,Forcefield,Fit: Featured Image Toolkit,All In One Invite Codes,Dynamic Pricing And Discount Rules For WooCommerce,Better Messages – Live Chat For WordPress, Buddypress, Peepso, Ultimate Member, Buddyboss,Grid & Styler For Contact Form 7 And Divi,Protect Uploads With Login – Protect Your Uploads,Atlas – Knowledge Base,Simple Sitemap – Create A Responsive Html Sitemap,Super Video Player- Best WordPress Video Display Plugin For Mp4/ogg,WordPress Books Gallery,Fibosearch – Ajax Search For WooCommerce,Tag Groups Is The Advanced Way To Display Your Taxonomy Terms,WP Free Ssl – Free Ssl Certificate For WordPress And Force Https,Clickervolt – Affiliate Links & Click Tracking For Performance Marketers,Consultpress Lite,Divi Forms Styler – Gravity Forms, Fluent Forms & Contact Form 7,Streamweasels Twitch Integration,Mobile View For Responsive Web Design Optimization (ux Design) + Mobile Friendly Test,Zip Code Redirect,Guestofy – Restaurant Reservations Plugin, Room Planer, Reservation Form,Cf7 Constant Contact Fields Mapping,Booking Calendar | Appointment Booking | Bookit,Ethereumico,Rt Easy Builder – Advanced Addons For Elementor,WP Contact Slider,Country Based Payments For WooCommerce,Filr – Secure Document Library,Elasta,Mapgeo – Interactive Geo Maps,WordPress Animation Plugin – Animated Everything,WP Notification Bell,Activity Log For MainWP,Connected Sermons,Bulk Edit And Create User Profiles – WP Sheet Editor,Кнопка Юmoney,Bulk WooCommerce Category Creator,Easy Math Captcha For Cf7,Master Accordion ( Former WP Awesome Faq Plugin ),Better Elementor Addons,Elementor Addons By Livemesh,Place Order Without Payment For WooCommerce,Stewoo – Super Transactional Emails For WooCommerce,Demomentsomtres Address,Out Of Stock Display For WooCommerce,Ultimate Blocks – WordPress Blocks Plugin,Bulk Auto Image Title Attribute (image Title Tag) Optimizer (image Seo),WP Radio – Worldwide Online Radio Stations Directory For WordPress,Bookpress – For Book Authors,Qyrr – Simply And Modern Qr-code Creation,WordPress Directory Plugin For Business Listings –  WP Local Plus,Equalize Digital Accessibility Checker – Audit Your Website For Wcag, Ada, And Section 508 Accessibility Errors,Funnelmentals,Blockspare: Gutenberg Blocks & Patterns For Blogs, Magazines, Business Sites – Post Grids, Sliders, Carousels, Counters, Page Builder & Starter Site Imports, No Coding Needed,Forms To Zapier, Integromat, Ifttt, Workato, Automate.io, Elastic.io, Built.io, Apiant, Webhook,Product Carousel For WooCommerce – Woorousell,WordPress Robots.txt Optimizer (+ Xml Sitemap) – Boost Seo, Traffic & Rankings,Gfirem Fields,Coupon Affiliates – Affiliate Plugin For WooCommerce,WP Post Block,Lms Plugin – Elearning, Online Courses By Attest,Frontend Admin By Dynamiapps,Simple Giveaways – Grow Your Business, Email Lists And Traffic With Contests,WPtools Masonry Gallery & Posts For Divi,Gfirem Action After,Woo Ukrposhta,Annasta WooCommerce Product Filters,WP Lead Stream,The Events Calendar,Focus On Reviews For WooCommerce,Email Tracker – Email Tracking Plugin To Track Emails For Open And Email Links Click (compatible With WooCommerce),Block Styler For Gravity Forms,WP Page Templates,Product Customer List For WooCommerce,WP Moose,Team Members – A WordPress Team Plugin With Gallery, Grid, Carousel, Slider, Table, List, And More,Floating Social Share Icons And Social Share Buttons – Next Previous Post Links – Fl,South Pole: Climate Action Now,Littlebot Invoices,Genealogical Tree – WordPress Family Tree,Automatic Youtube Gallery,Thank You Page For WooCommerce,Marijuana Age Verify,WooCommerce Upcoming Products,Frontend Admin – Add And Edit Posts, Pages, Users And More All From The Frontend,Sv Tracking Manager,WP Easypay – Square For WordPress,WordPress Seo Checklist,Wgauge – Free Version,Prime Slider – Addons For Elementor (revolution Of A Slider, Hero Slider, Ecommerce Slider),Post Form – Registration Form – Profile Form For User Profiles – Frontend Content Forms For User Submissions (ugc),WP Tools Divi Product Carousel,Guest Posting / Frontend Posting WordPress Plugin – WP Front User Submit / Front Editor,Social Gallery Lite,Stackable – Page Builder Gutenberg Blocks,Five-star Ratings Shortcode,Captcha 4WP – Antispam Captcha Solution For WordPress,Premmerce Wishlist For WooCommerce,Salon Booking System,Surbma | Gdpr Proof Cookie Consent & Notice Bar,Advance Menu Manager,Live Tv Player – Worldwide Live Tv Channels Player For WordPress,Market Exporter,WP Adminify – Custom WordPress Dashboard, Login And Admin Customizer,Tk Google Fonts Gdpr Compliant,Starfish Review Generation & Marketing For WordPress,WP Emaily,Education Addon For Elementor,Sv Proven Expert,Surveyfunnel – Survey Plugin For WordPress,Advanced Classifieds & Directory Pro,Music Player For Elementor – Audio Player & Podcast Player,Cryptocurrency Product For WooCommerce,WooCommerce Next Order Coupon,Overlay Image Divi Module,Email Header Footer,Document Viewer-  Plugin To Display Ms Office Docs,Price Bands For WooCommerce,Elementor Addon Elements,Smart Variations Images & Swatches For WooCommerce,Featured Images In Rss For Mailchimp & More,Simple Sponsorships,Unlimited Elements For Elementor (free Widgets, Addons, Templates),Joli Table Of Contents,Sparrow: Product Reviews And Ratings For WooCommerce,Multi Page Auto Advance For Gravity Forms,Generate Images – Magic Post Thumbnail,Live Scores For Sportspress,Hide Shipping Method For WooCommerce,Ultimate Carousel For Divi,WP Meta And Date Remover,Image Carousel For Divi,Comments Not Replied To,Contact Form 7 – Capsule Crm – Integration,Opensea,WordPress Translation Plugin For Post, Pages & WooCommerce Products. Tranzly Io Ai Deepl Automatic WordPress Translator.,Pixel Manager For WooCommerce – Track Google Analytics, Google Ads, Tiktok And More,Modern Addons For Elementor Page Builder,Viralike,WordPress Dev Powers – Element Selector Jquery Powers Plugin,WP Munich Blocks – Gutenberg Blocks For WordPress,Availability Datepicker – Integrate With Contact Form 7 And Divi,Footer Plugin For Divi,Accept Stripe Donation And Payments – AidWP,New User Approve,Gfirem Advance Search,WPmailer – The Best Mail Builder, No More Core For Your Emails Support Elementor, Cf7 Forms Etc…,Shared Files – Frontend File Upload Form & Secure File Sharing,WPbits Addons For Elementor Page Builder,Speculor,WP Google Street View (with 360° Virtual Tour) & Google Maps + Local Seo,WordPress Everse Starter Sites – Elementor Templates,Master Addons – Elementor Addons With White Label, Free Widgets, Hover Effects, Conditions, & Animations,Choice Payment Gateway For WooCommerce,Domain Mapping System | Create Microsites With Multiple Alias Domains (multisite Optional),Order And Inventory Manager For WooCommerce,Ninja Libs Amazon Ses,Delete All Comments Of WordPress,WP-cron Status Checker,Codekit – Custom Codes Editor,Foogallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel,Change Price Title For WooCommerce,WordPress Gallery Plugin – Edge Photo Gallery,Glorious Services & Support,Easy Newsletter Signups,Announcement & Notification Banner – Bulletin,Advanced Database Replacer,Multisite Robots.txt Manager,Simple Social Page Widget & Shortcode,WooCommerce Country Catalogs – Product Country Restrictions,Front End Pm,Ultimate Divi Modules Suite – Divi Sumo Lite,Xt Points & Rewards For WooCommerce,Widgets For WooCommerce Products On Elementor,Delivery For WooCommerce,WP Sms Plugin – WordPress Sms Two Factor Authentication – 2fa, Two Factor, Otp Sms And Email,Security Ninja – Secure Firewall & Secure Malware Scanner,Tinymce Annotate,Justified Gallery,Book Buyback Prices,Fuse Social Floating Sidebar,WP-hr Manager: The Human Resources Plugin For WordPress,Emails Blacklist For Everest Forms,All-in-one Video Gallery,Woo Admin Product Notes,Remove Add To Cart WooCommerce,Checkout With Zelle On WooCommerce,WP Tools Gravity Forms Divi Module,Everse,Run Time Image Resizing,Rest Routes – Custom Endpoints For WordPress Rest Api,Widget For Contact Form 7,Add Pinterest Conversion Tags For Pinterest Ads +  Site Verification,Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Also, Display Google Sheet As A Table.,WP Bugbot,Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, And Manage Your Google Drive Files Into Your WordPress Site,Nokke,WooCommerce Customers Table: View, Search, Bulk Editor,Sync Ecommerce Neo,Preloader For Divi,Get Better Reviews For WooCommerce,Knowledge Base Documentation & Wiki Plugin – Basepress Docs,Appointment & Event Booking Calendar Plugin – Webba Booking,Shuban,Acf For WooCommerce Product,Scheduled Notification Bar,3d Viewer – 3d Model Viewer Plugin,Fullscreen Menu,Gallery Photoblocks,Redirection For Contact Form 7,Demomentsomtres Grid Archive,Inbound Brew,WP Photo Effects,Top Bar – Popups – By WPoptin,Extra Fees Plugin For WooCommerce,Reset Course Progress For Learndash,Podcast Box – Best Podcasting Plugin For WordPress,The Best Plugin For Restrict Content, Support All Custom Post Types And Elementor – Password Protected,Turbo Widgets,Passster – Password Protect Pages And Content,Gift Message For WooCommerce,Azw WooCommerce File Uploads,Blog Grid & Post Grid – Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry, Category Post Grid By News & Blog Designer Pack,Broadcast Lite,Notification Bar, Announcement And Cookie Notice WordPress Plugin – Foobar,WP Author Bio,Rw Divi Unite Gallery,Tablesome – Form Db & Automation – WPforms, Contact Form 7, Elementor, Forminator, Fluent, Gravity,Product Image Watermark For Woo,Afi – The Easiest Integration Plugin,Revolution For Elementor,Coneblog – Elementor Blog Widgets,Under Construction,WP Gratify,Automizy Gravity Forms,Widgets On Pages,Get Feedback From Visitors – WP Feedback Suite Plugin,WordPress Buffer – Hypesocial. Social Media Auto Post, Social Media Auto Publish And Schedule,Content Aware Sidebars – Fastest Widget Area Plugin,Bani,Fast WordPress,Skt Templates – 100% Free Elementor & Gutenberg Templates,Categorify – WordPress Media Library Category & File Manager,Ivory Search – WordPress Search Plugin,Add Twitter Pixel For Twitter Ads,Xt Variation Swatches For WooCommerce,Url Shortify – Simple, Powerful And Easy Url Shortener Plugin For WordPress,Authorize.net Payment Gateway For WooCommerce,Buddypress WooCommerce My Account Integration. Create WooCommerce Member Pages,Affiliate Link Builder Plugin For Amazon Associates – Review Engine,Glossary,Bavoko Seo Tools – All-in-one WordPress Seo,Cartoon Url,WP Frontend Admin – Display WP Admin Pages In The Frontend,Block, Suspend, Report For Buddypress,Menu Image, Icons Made Easy,Xt Ajax Add To Cart For WooCommerce,One Click Login,Ether And Erc20 Tokens WooCommerce Payment Gateway,Chat Button- Leads And Order Over Chat,WooCommerce Shipping Gateway Per Product,Purosa,Best Responsive Comparison Table For Gutenberg Editor – Nichetable,Advanced Page Visit Counter –  Most Wanted Analytics Plugin For WordPress,WP Sierra,Digital Goods For WooCommerce Checkout,Seo Booster,Anti-spam By Fullworks : Gdpr Compliant Spam Protection,Ultimate Widgets Light,Insert Or Embed Articulate Content Into WordPress,Appexperts – Mobile App Builder For WordPress | WooCommerce To iOS And Android Apps,Ultimate Post Kit Addons For Elementor – (post Grid, Post Carousel, Post Slider, Category List, Post Tabs, Timeline, Post Ticker, Tag Cloud),Caxton – Create Pro Page Layouts In Gutenberg,Nitek Carousel Slider Cool Transitions,Extend Filter Products By Price Widget,Blockmeister – Block Pattern Builder,Yatri Tools,Restrict – Membership, Site, Content And User Access Restrictions For WordPress,Change Prices With Time For WooCommerce,Flat Rate Shipping Plugin For WooCommerce,Responsive Social Slider Widget,Menu Item Scheduler,Blog Sidebar Widget,Multipurpose Gutenberg Block,Full Page Blog Designer,WooCommerce Variation Swatches For Products,WP Activity Log,Simple Feature Requests Free – User Feedback Board,Bulk Edit Categories And Tags – Create Thousands Quickly On The Editor,License Manager For WooCommerce,Sky Login Redirect,Google Analytics Plugin For WordPress By Ga4WP,Divi Collage,WordPress Persistent Login,Deals Of The Day WooCommerce,Add Linkedin Insight Tags For Linkedin Ads,Easy Settings For Learndash,Share This Image,Easy Social Feed – Social Photos Gallery – Post Feed – Like Box,Nexus,Meridia,Webinar Solution: Create Live/evergreen/automated/instant Webinars, Stream & Zoom Meetings | Webinarignition,Delete Old Posts Automatically,Brand,WPbakery Page Builder Addons By Livemesh,WP Table Builder – WordPress Table Plugin,Radio Player – Live Shoutcast, Icecast And Any Audio Stream Player For WordPress,Divi Content Restrictor,Logo Showcase – Responsive Logo Carousel, Logo Slider & Logo Grid,Premmerce Variation Swatches For WooCommerce,Portfolio For Elementor & Image Gallery | Powerfolio,Ssl Atlas – Free Ssl Certificate & Https Redirect For WordPress,Gallery Blocks With Lightbox. Image Gallery, (html5 Video , Youtube, Vimeo) Video Gallery And Lightbox For Native Gallery,Easy Tiktok Feed,Popoverxyz – Show Light Weight Beautiful Tool Tips On Any Text,Bulk Auto Image Alt Text (alt Tag, Alt Attribute) Optimizer (image Seo),Number Chat,Rating-widget: Star Review System,Spotlight Social Feeds – Block, Shortcode, And Widget,Expire Tags,Go Viral – Social Share, Social Sharebar, Social Locker, Social Chat, Open Graph, Reactions, Share & View Counters,Design For Contact Form 7 Style WordPress Plugin – Cf7 Wow Styler,Dashy – Google Analytics Advanced Dashboard,Premmerce User Roles,Radio Station By Netmix® – Manage And Play Your Show Schedule In WordPress!,Mycred – Loyalty Points And Rewards Plugin For WordPress And WooCommerce – Give Points, Ranks, Badges, Cashback, WooCommerce Rewards, And WooCommerce Credits For Gamification,WordPress Seo Audit Plugin – WP Site Auditor,WordPress Reviews By RevieWPress,WP Travel Engine – Tour Booking Plugin – Tour Operator Software,WP Mobile Menu – The Mobile-friendly Responsive Menu,WP Smart Export (free),Free Booking Plugin For Hotels, Restaurants And Car Rentals – Easync Booking,WP Conference Schedule,Strumenti Partita Iva Per WooCommerce,Anfrageformular – Multi Step Drag & Drop Formular Builder – Leadgenerierung,Premmerce Brands For WooCommerce,Ethereum Wallet,Limb Gallery | Create Beautiful Image & Video Galleries,Code Manager,Payment Gateway For Payfabric,Cp Simple Newsletter,Littlebot Ach For Stripe + Plaid,Aquarella Lite,Coinbase Commerce – Crypto Gateway For WooCommerce,Villar,Kikote – Location Picker At Checkout & Google Address Autofill Plugin For WooCommerce,Age Verification Screen For WooCommerce,Enhanced Ecommerce Google Analytics For WooCommerce,Joli Faq Seo – WordPress Faq Plugin,Mass Pages/posts Creator,WP Relevant Ads,Gloriousthemes Starter Sites,WP Group Promoter,Airpress,Schema Plugin For Divi, Gutenberg & Shortcodes,Giveaways For WooCommerce,Custom Login Page Customizer,Learnmore,Demomentsomtres Media Tools Auto,Ocean Extra,Kk Star Ratings – Rate Post & Collect User Feedbacks,Drop Shadow Boxes,Faq Manager For Divi, Gutenberg Block & Shortcode,Ads.txt & App-ads.txt Manager For WordPress,Quick Contact Form,WP Frontend Profile,Svg Flags – Beautiful Scalable Flags For All Countries!,Drip Feed Content Extended For Learndash,Posts List Designer By Category – List Category Posts Or Recent Posts,Conversion De Moneda WooCommerce,Vidseo | WordPress Video Seo Embedder With Transcripts (youtube & Vimeo),Before And After Product Images For WooCommerce,WooCommerce Customer Reviews With Artificial Intelligence Analyzis,  With IBM Watson Tone Analyzer,LaWPress – Law Firm Website Management,Shipping Method Display Style For WooCommerce,Royal Elementor Addons And Templates,Sql Reporting Services – Ssrs Plugin For WordPress,Bulk Edit Posts And Products In Spreadsheet,Delete Duplicate Posts,Ws Bootstrap,Clean Social Icons,Media Library File Download,WP Link Bio,Internal Linking For Seo Traffic & Ranking – Auto Internal Links (100% Automatic),Geo Mashup,Builder For WooCommerce Product Reviews Shortcodes – Reviewshort,Contact List – Premium Staff Listing, Business Directory Plugin & Address Book,Post Snippets – Custom WordPress Code Snippets Customizer,Socialmark – Easy Watermark/logo On Social Media Post Link Share Preview,Print My Blog – Print, PDF, & Ebook Converter WordPress Plugin,WP Delicious – Recipe Plugin For Food Bloggers (formerly Delicious Recipes),Treepress – Easy Family Trees & Ancestor Profiles,Postcode Redirect,Product Author For WooCommerce,WP Coupons And Deals – WordPress Coupon Plugin,Feedpress Generator – External Rss Frontend Customizer,Form Vibes – Database Manager For Forms,WP Automedic,Banner Management For WooCommerce,Duplicate Variations For WooCommerce,Send Prebuilt Emails,Faq / Accordion / Docs – Helpie WordPress Faq Accordion Plugin,Livemesh Siteorigin Widgets,Livemesh Addons For Beaver Builder,Tabs With Recommended Posts (widget),Spanish Market Enhancements For WooCommerce,Revivepress – Keep Your Old Content Evergreen,WP Fail2ban – Advanced Security Plugin,Ultra Elementor Addons,RecurWP – WordPress Recurly Payment Gateway,Smart Floating / Sticky Buttons – Call, Sharing, Chat Widgets & More – Buttonizer,Quick Event Manager,Image Photo Gallery Final Tiles Grid,Lightbox & Modal Popup WordPress Plugin – Foobox,WP Dev Powers – Display Screen Dimensions To Admin Plugin,Ultimate Bulk Seo Noindex Nofollow – Speed Up Penalty Recovery Ultimate Seo Booster,WP Data Access – WordPress App, Table And Form Builder Plugin,Storecustomizer – A Plugin To Customize All WooCommerce Pages,WordPress News Plugin – TopnewsWP,User Menus – Nav Menu Visibility,Contact Form 7 Multi-step Forms,Easy Age Verify,Blocked In China | Check If Your Site Is Available In The Chinese Mainland,WooCommerce Disable Payment Methods Based On Cart Conditions,Awesome Ssl,Iks Menu – WordPress Category Accordion Menu & Faqs,Purus,Hooked Editable Content,Run Contests, Raffles, And Giveaways With ContestsWP,Post Carousel Divi,Mailchimp Manager,Premmerce Permalink Manager For WooCommerce,Secure Ip Logins,Videopack,Premmerce WooCommerce Customers Manager,Anywhere Elementor,Divi Torque Lite – Divi Theme And Extra Theme,Events Calendar Registration,Rocket Maintenance Mode & Coming Soon Page,WordPress WooCommerce Sync For Google Sheet,Easy Smooth Scroll Links  – Smooth Scrolling Anchor,Page Builder Gutenberg Blocks – Kioken Blocks,Cryptocurrency Portfolio Tracker,Go Fetch Jobs (for WP Job Manager),Quick Affiliate Store,WP Tools Divi Blog Carousel,Post To Google My Business (google Business Profile),Nichebase,WPvisitorinfo – Show Visitor Information & Conditional Data Based On That Information,Premmerce,Cartpops – High Converting Add To Cart Popup For WooCommerce,Scrollsequence – Cinematic Scroll Image Animation Plugin,Elation,Cuisine Palace,Product Attachment For WooCommerce,Master Blocks – Gutenberg Site Builder,Product Options And Price Calculation Formulas For WooCommerce – Uni Cpo,WordPress Coupon Plugin For Bloggers And Marketers – WP Offers,WordPress Form Builder Plugin For Contact Forms, Surveys And Quizzes – Tripetto,Widgets On Pages And Posts,Better Messages – Wcfm Integration,Sheetpress – Manage WordPress Meta Data With Google Sheets,Advanced Custom Fields Options Import/export,Quick Paypal Payments,Tarot Card Oracle,Better Sharing,Restrict User Access – Ultimate Membership & Content Protection,Wupo Group Attributes For WooCommerce,Nugget By Ingot: Easy, Automated And Native A/b Testing For Everyone,Feedbackscout: The Easiest Way To Collect, Prioritise, Manage And Track Customer Feedback.,Arendelle,Easy Zillow Reviews,Battle Suit For Divi,Store Toolkit –  WooCommerce Extensions, Quick Enhancements & Handy Tools,Wcc Seo Keyword Research,Elements For Lifterlms,Custom Registration And Custom Login Forms With New Recaptcha,Quote For WooCommerce Lite – Add To Quote Plugin Lets Customers Request Custom Quotes For Products Using The Request A Quote Plugin For WooCommerce,Wadi Survey,Performance Kit,Page Builder For Gutenberg – Starterblocks,Impexium Single Sign On,Xt Quick View For WooCommerce,Live Drag And Drop Builder For Contact Form 7,Primary Addon For Elementor,Jds Portfolio,Twentyfourth WP Scraper,Blocksy Companion,WordPress Google Translate,Hasium,Station Pro,Event Tickets And Registration,Gateway For Paylate On WooCommerce,Auto Seo Meta Keywords (meta Tags Keywords) Optimization + WooCommerce,Climateclick: Climate Action For All,Premmerce Seo For WooCommerce,Wholesale For WooCommerce — This Wholesale Plugin Helps B2b And B2c Businesses Streamline Wholesale Products, Pricing, And User Roles, Automating Their WooCommerce Wholesale Stores,Frontend Group Restriction For Learndash,Really Simple Featured Video – Featured Video Support For Posts, Pages & WooCommerce Products,Display Eventbrite Events,Xt Floating Cart For WooCommerce,Cookie Consent For WP – Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for Gdpr, Ccpa & Eprivacy),WP Spid Italia,Tiered Pricing Table For WooCommerce,Migrate WordPress Website & Backups – Prime Mover,Replyable – Subscribe To Comments And Reply By Email,Court Reservation – Manage Your Court Bookings Online,Vo Store Locator – WP Store Locator Plugin,Get Directions Map,Premmerce Redirect Manager,Snazzyadmin WP Admin Theme,Amela,WooCommerce Customers Order History,EtHPress – Web3 Login,Ant Admin Notices For Team,WooCommerce Bulk Edit Coupons – WP Sheet Editor,Pay For Post With WooCommerce,Bbresolutions,WooCommerce Google Analytics Integration By Advanced Wc Analytics,Tk Smugmug Slideshow Shortcode,Lightbox – Everlightbox Gallery,Unakit,WP Affiliate Disclosure,Media Cloud For Bunny Cdn, Amazon S3, Cloudflare R2, Google Cloud Storage, Digitalocean And More,Racar Clear Cart For WooCommerce,WP Disable Sitemap,Internal Link Juicer: Seo Auto Linker For WordPress,Block Slider – Responsive Image Slider, Video Slider & Post Slider,Pinblocks — Gutenberg Blocks With Pinterest Widgets,Contact Widgets For Elementor All The Contact Links You Need In One Place,Tickera – WordPress Event Ticketing,Streamcast – Radio Player For WordPress,Sticky Add To Cart For Woo,Blockypage – Gutenberg Based Page Builder,Pro Broken Links Maintainer,WP School Calendar,Listplus – Unlimited Listing Directory,Walker Core,Agy – Age Verification For WooCommerce,Modern Designs For Gravity Forms,Rankbear,Stax Header Builder,Fast Checkout For WooCommerce,WooCommerce Payplug,Easy Code Snippets,W3scloud Contact Form 7 To Zoho Crm,Widget Detector For Elementor,Add Tiktok Pixel For Tiktok Ads (+WooCommerce),WP Encryption – One Click Free Ssl Certificate & Ssl / Https Redirect To Force Https, Security+,Better Messages – Integration For Wc Vendors Marketplace,Alley Business Toolkit,Premmerce Product Filter For WooCommerce,WP Search Filter,Easy Post Views Count,Power Ups For Elementor,Social Kit,Post Slider And Post Carousel With Post Vertical Scrolling Widget – A Responsive Post Slider,Hm Multiple Roles,Team Collaboration Plugin For WordPress Editorial Teams- Multicollab,Alt Manager,Premmerce Product Search For WooCommerce,WP Security Safe,WooCommerce Bulk Edit Products – WP Sheet Editor,Da Reactions,Food Store – Online Food Delivery & Pickup,Abeta Link Punchout,Jav&#039;s – WooCommerce And Trello Integration Wootrello,Page Builder Sandwich – Front End WordPress Page Builder Plugin,WP Sessions Time Monitoring Full Automatic,Woowgallery – Image Gallery / Content Gallery / Ecommerce Gallery / Social Gallery / Video Gallery / Album Photo Gallery,WordPress Auto Seo Plugin – Upfiv Seo Wizard,Greenshift – Animation And Page Builder Blocks,Restaurant & Cafe Addon For Elementor",6.3,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2024-10-16T06:43:30.014Z,0
CVE-2024-5431,https://securityvulnerability.io/vulnerability/CVE-2024-5431,WPCafe Plugin Vulnerable to Local File Inclusion Attacks,"The WPCafe plugin for WordPress, specifically the Online Food Ordering, Restaurant Menu, Delivery, and Reservations feature, contains a Local File Inclusion vulnerability. This issue is present in all plugin versions up to and including 2.2.25 and is exploited via the 'reservation_extra_field' shortcode parameter. Authenticated attackers with Contributor-level access or higher can leverage this vulnerability to include remote files on the server, which may result in unauthorized code execution. This susceptibility could severely compromise the security of the affected systems and necessitates immediate attention for those using the plugin.",Wordpress,"WPcafe – Online Food Ordering, Restaurant Menu, Delivery, And Reservations For WooCommerce",8.8,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2024-06-25T05:41:46.543Z,0
CVE-2024-1399,https://securityvulnerability.io/vulnerability/CVE-2024-1399,Table Reservation Plugin Vulnerable to Stored Cross-Site Scripting,"The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Restaurant Menu – Food Ordering System – Table Reservation,6.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-06-15T05:45:28.221Z,0
CVE-2024-5459,https://securityvulnerability.io/vulnerability/CVE-2024-5459,Restaurant Menu and Food Ordering <= 2.4.16 - Missing Authorization to Menu Creation,"The Restaurant Menu and Food Ordering plugin for WordPress is vulnerable to unauthorized creation of data due to a missing capability check on 'add_section', 'add_menu', 'add_menu_item', and 'add_menu_page' functions in all versions up to, and including, 2.4.16. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create menu sections, menus, food items, and new menu pages.",Wordpress,Five Star Restaurant Menu And Food Ordering,4.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,false,false,2024-06-05T13:15:00.000Z,0
CVE-2024-5427,https://securityvulnerability.io/vulnerability/CVE-2024-5427,WPCafe Plugin Vulnerable to Stored Cross-Site Scripting,"The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,"WPcafe – Online Food Ordering, Restaurant Menu, Delivery, And Reservations For WooCommerce",6.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-31T06:40:54.597Z,0
CVE-2024-1855,https://securityvulnerability.io/vulnerability/CVE-2024-1855,Unauthenticated Attackers Can Trigger Server-Side Request Forgery in WPCafe Plugin,"The WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table Reservation plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.2.23 via the wpc_check_for_submission function. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from the web application.",Wordpress,"WPcafe – Online Food Ordering, Restaurant Menu, Delivery, And Reservations For WooCommerce",5.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-23T01:56:18.284Z,0
CVE-2024-4083,https://securityvulnerability.io/vulnerability/CVE-2024-4083,Cross-Site Request Forgery Vulnerability in Easy Restaurant Table Booking Plugin for WordPress,"The Easy Restaurant Table Booking plugin for WordPress is susceptible to Cross-Site Request Forgery (CSRF) due to inadequate nonce validation during the settings save process. Attackers can exploit this vulnerability by deceiving a site administrator into executing unauthorized actions, thereby compromising the plugin's configuration. Any version up to and including 1.0.0 is at risk, emphasizing the need for site administrators to remain vigilant and apply security best practices.",Wordpress,Easy Restaurant Table Booking,4.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-05-02T16:51:47.830Z,0
CVE-2024-1382,https://securityvulnerability.io/vulnerability/CVE-2024-1382,Arbitrary PHP File Inclusion Vulnerability in Restaurant Reservations Plugin for WordPress,"The Restaurant Reservations plugin for WordPress is affected by a Local File Inclusion vulnerability. This issue arises from the improper handling of the nd_rst_layout attribute within the nd_rst_search shortcode. Authenticated attackers with contributor-level access can exploit this vulnerability to include and execute arbitrary PHP files on the server. The malicious execution of PHP code opens avenues for bypassing access controls, potentially exposing sensitive information, and executing code through uploaded PHP files that may not be directly accessible, thus posing significant risks to WordPress sites utilizing this plugin.",Wordpress,Restaurant Reservations,8.8,HIGH,0.00044999999227002263,false,,false,false,false,,false,false,2024-03-07T08:34:52.584Z,0
CVE-2024-1977,https://securityvulnerability.io/vulnerability/CVE-2024-1977,Stored Cross-Site Scripting Vulnerability Affects Restaurant Solutions Checklist Plugin for WordPress,"The Restaurant Solutions – Checklist plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Checklist points in version 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.",Wordpress,Restaurant Solutions – Checklist,4.8,MEDIUM,0.0005099999834783375,false,,false,false,false,,false,false,2024-02-29T05:32:21.627Z,0
CVE-2023-5340,https://securityvulnerability.io/vulnerability/CVE-2023-5340,Five Star Restaurant Menu and Food Ordering < 2.4.11 - Unauthenticated PHP Object Injection,"The Five Star Restaurant Menu and Food Ordering plugin for WordPress prior to version 2.4.11 has a vulnerability that allows unauthenticated users to exploit the unserialization of user input via an AJAX action. This can lead to PHP Object Injection if an appropriate gadget is present on the blog, potentially compromising the security of the application and enabling attackers to execute arbitrary PHP code within the context of the website.",Wordpress,Five Star Restaurant Menu and Food Ordering,9.8,CRITICAL,0.004209999926388264,false,,false,false,false,,false,false,2023-11-20T19:15:00.000Z,0
CVE-2023-2813,https://securityvulnerability.io/vulnerability/CVE-2023-2813,Multiple Themes - Reflected XSS,"All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, Anfaust WordPress theme through 1.1, Arendelle WordPress theme before 1.1.13, Atlast Business WordPress theme through 1.5.8.5, Bazaar Lite WordPress theme before 1.8.6, Brain Power WordPress theme through 1.2, BunnyPressLite WordPress theme before 2.1, Cafe Bistro WordPress theme before 1.1.4, College WordPress theme before 1.5.1, Connections Reloaded WordPress theme through 3.1, Counterpoint WordPress theme through 1.8.1, Digitally WordPress theme through 1.0.8, Directory WordPress theme before 3.0.2, Drop WordPress theme before 1.22, Everse WordPress theme before 1.2.4, Fashionable Store WordPress theme through 1.3.4, Fullbase WordPress theme before 1.2.1, Ilex WordPress theme before 1.4.2, Js O3 Lite WordPress theme through 1.5.8.2, Js Paper WordPress theme through 2.5.7, Kata WordPress theme before 1.2.9, Kata App WordPress theme through 1.0.5, Kata Business WordPress theme through 1.0.2, Looki Lite WordPress theme before 1.3.0, moseter WordPress theme through 1.3.1, Nokke WordPress theme before 1.2.4, Nothing Personal WordPress theme through 1.0.7, Offset Writing WordPress theme through 1.2, Opor Ayam WordPress theme through 18, Pinzolo WordPress theme before 1.2.10, Plato WordPress theme before 1.1.9, Polka Dots WordPress theme through 1.2, Purity Of Soul WordPress theme through 1.9, Restaurant PT WordPress theme before 1.1.3, Saul WordPress theme before 1.1.0, Sean Lite WordPress theme before 1.4.6, Tantyyellow WordPress theme through 1.0.0.5, TIJAJI WordPress theme through 1.43, Tiki Time WordPress theme through 1.3, Tuaug4 WordPress theme through 1.4, Tydskrif WordPress theme through 1.1.3, UltraLight WordPress theme through 1.2, Venice Lite WordPress theme before 1.5.5, Viala WordPress theme through 1.3.1, viburno WordPress theme before 1.3.2, Wedding Bride WordPress theme before 1.0.2, Wlow WordPress theme before 1.2.7 suffer from the same issue about the search box reflecting the results causing XSS which allows an unauthenticated attacker to exploit against users if they click a malicious link.",Wordpress,"Aapna,Anand,Anfaust,Arendelle,Atlast Business,Bazaar Lite,Brain Power,BunnyPressLite,Cafe Bistro,College,Connections Reloaded,Counterpoint,Digitally,Directory,Drop,Everse,Fashionable Store,Fullbase,Ilex,Js O3 Lite,Js Paper,Kata,Kata App,Kata Business,Looki Lite,moseter,Nokke,Nothing Personal,Offset Writing,Opor Ayam,Pinzolo,Plato,Polka Dots,Purity Of Soul,Restaurant PT,Saul,Sean Lite,Tantyyellow,TIJAJI,Tiki Time,Tuaug4,Tydskrif,UltraLight,Venice Lite,Viala,viburno,Wedding Bride,Wlow",6.1,MEDIUM,0.0012000000569969416,false,,false,false,false,,false,false,2023-09-04T12:15:00.000Z,0
CVE-2022-4657,https://securityvulnerability.io/vulnerability/CVE-2022-4657,Restaurant Menu < 2.3.6 - Contributor+ Stored XSS via Shortcode,"The Restaurant Menu WordPress plugin before 2.3.6 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks",Wordpress,Restaurant Menu,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-02-06T19:59:42.959Z,0
CVE-2023-0550,https://securityvulnerability.io/vulnerability/CVE-2023-0550,Insecure Direct Object Reference in Quick Restaurant Menu Plugin for WordPress,"The Quick Restaurant Menu plugin for WordPress suffers from an Insecure Direct Object Reference vulnerability in versions up to 2.0.2. This issue occurs because the plugin fails to validate the post ID provided to the AJAX action during menu item deletion or modification. As a result, authenticated users with subscriber-level access or higher can potentially modify or delete any post, regardless of ownership, thus compromising the integrity of the website.",Wordpress,Quick Restaurant Menu,4.3,MEDIUM,0.0006000000284984708,false,,false,false,false,,false,false,2023-01-27T21:15:00.000Z,0
CVE-2023-0553,https://securityvulnerability.io/vulnerability/CVE-2023-0553,Stored Cross-Site Scripting in Quick Restaurant Menu Plugin for WordPress,"The Quick Restaurant Menu plugin for WordPress allows authenticated attackers with administrator-level permissions to exploit a stored cross-site scripting vulnerability. The lack of proper input sanitization and output escaping in the plugin's settings parameters enables attackers to inject arbitrary web scripts. These scripts execute when a user accesses the compromised pages, potentially leading to unauthorized actions or data exposure.",Wordpress,Quick Restaurant Menu,4.8,MEDIUM,0.0006000000284984708,false,,false,false,false,,false,false,2023-01-27T21:15:00.000Z,0
CVE-2023-0554,https://securityvulnerability.io/vulnerability/CVE-2023-0554,Cross-Site Request Forgery in Quick Restaurant Menu Plugin for WordPress,"The Quick Restaurant Menu plugin for WordPress suffers from a Cross-Site Request Forgery issue, primarily due to inadequate nonce validation on its AJAX actions. This vulnerability allows unauthorized attackers to manipulate menu items, provided they can deceive a site administrator into executing an action, such as clicking a malicious link. To mitigate risks, it is crucial for users to update to the latest version of the plugin, where these security flaws are addressed.",Wordpress,Quick Restaurant Menu,4.3,MEDIUM,0.0008800000068731606,false,,false,false,false,,false,false,2023-01-27T21:15:00.000Z,0
CVE-2023-0555,https://securityvulnerability.io/vulnerability/CVE-2023-0555,Authorization Bypass Flaw in Quick Restaurant Menu Plugin for WordPress,"The Quick Restaurant Menu plugin for WordPress is susceptible to an authorization bypass vulnerability due to inadequate capability checks in its AJAX functionality. This flaw allows authenticated users with subscriber-level permissions and above to access privileged actions intended exclusively for administrators, including creating, updating, and deleting menu items. Furthermore, the plugin lacks adequate verification mechanisms for post IDs provided in its AJAX requests, potentially leading to unauthorized deletion or alteration of arbitrary posts. It is essential for users of this plugin to update to the latest version to mitigate these risks and secure their WordPress installations.",Wordpress,Quick Restaurant Menu,5.4,MEDIUM,0.0006099999882280827,false,,false,false,false,,false,false,2023-01-27T21:15:00.000Z,0
CVE-2022-0421,https://securityvulnerability.io/vulnerability/CVE-2022-0421,Five Star Restaurant Reservations < 2.4.12 - Unauthenticated Arbitrary Payment Status Update to Stored XSS,"The Five Star Restaurant Reservations WordPress plugin before 2.4.12 does not have authorisation when changing whether a payment was successful or failed, allowing unauthenticated users to change the payment status of arbitrary bookings. Furthermore, due to the lack of sanitisation and escaping, attackers could perform Cross-Site Scripting attacks against a logged in admin viewing the failed payments",Wordpress,Five Star Restaurant Reservations,6.1,MEDIUM,0.0007600000244565308,false,,false,false,false,,false,false,2022-11-21T00:00:00.000Z,0
CVE-2022-3776,https://securityvulnerability.io/vulnerability/CVE-2022-3776,Cross-Site Request Forgery Vulnerability in Restaurant Menu – Food Ordering System Plugin by WordPress,"The Restaurant Menu – Food Ordering System plugin for WordPress suffers from a Cross-Site Request Forgery vulnerability in versions up to 2.3.1. The issue stems from inadequate nonce validation on several AJAX functions, such as forms_action, set_option, and chosen_options. This flaw allows unauthenticated attackers to trick site administrators into executing unauthorized actions, such as modifying forms, by sending forged requests. Consequently, this vulnerability poses a significant threat to the integrity of the affected installations.",Wordpress,Restaurant Menu – Food Ordering System – Table Reservation,8.8,HIGH,0.0017999999690800905,false,,false,false,false,,false,false,2022-11-03T16:30:34.559Z,0
CVE-2022-2696,https://securityvulnerability.io/vulnerability/CVE-2022-2696,Authorization Bypass in Restaurant Menu – Food Ordering System Plugin for WordPress,"The Restaurant Menu – Food Ordering System plugin for WordPress suffers from an authorization bypass vulnerability. This issue arises from the absence of necessary capability checks and nonce validation across several AJAX actions. As a result, authenticated users with limited permissions can exploit this flaw to execute unauthorized actions, including altering plugin settings and adjusting the ordering system preferences. Users of versions up to and including 2.3.0 should take immediate steps to update to the latest version to mitigate these risks.",Wordpress,Restaurant Menu – Food Ordering System – Table Reservation,6.3,MEDIUM,0.0006000000284984708,false,,false,false,false,,false,false,2022-11-03T16:29:51.558Z,0
CVE-2022-2754,https://securityvulnerability.io/vulnerability/CVE-2022-2754,Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Blind SQLi,"The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks",Wordpress,Ketchup Restaurant Reservations,9.8,CRITICAL,0.00267999991774559,false,,false,false,false,,false,false,2022-09-19T14:01:03.000Z,0
CVE-2022-2753,https://securityvulnerability.io/vulnerability/CVE-2022-2753,Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Stored XSS,"The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not sanitise and escape some of the reservation user inputs, allowing unauthenticated attackers to perform Cross-Site Scripting attacks logged in admin viewing the malicious reservation made",Wordpress,Ketchup Restaurant Reservations,6.1,MEDIUM,0.0009399999980814755,false,,false,false,false,,false,false,2022-09-19T14:01:01.000Z,0
CVE-2022-29923,https://securityvulnerability.io/vulnerability/CVE-2022-29923,WordPress Quick Restaurant Reservations plugin <= 1.4.1 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability,Cross-site Scripting (XSS) vulnerability in ThingsForRestaurants Quick Restaurant Reservations (WordPress plugin) allows Reflected XSS.This issue affects Quick Restaurant Reservations (WordPress plugin): from n/a through 1.4.1.,Wordpress,Quick Restaurant Reservations (WordPress Plugin),4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-07-20T19:15:00.000Z,0