Lucene search
+L

247 matches found

Vulnrichment
Vulnrichment
added 2025/08/13 3:42 a.m.3 views

CVE-2025-8491 Easy restaurant menu manager <= 2.0.2 - Cross-Site Request Forgery to Menu Upload

The Easy restaurant menu manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.2. This is due to missing or incorrect nonce validation on the nsceprmsavemenu function. This makes it possible for unauthenticated attackers to upload a men...

4.3CVSS6.7AI score0.00162EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/13 12:0 a.m.6 views

WordPress plugin Easy restaurant menu manager 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

4.3CVSS6.5AI score0.00162EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/08/12 11:9 p.m.4 views

WordPress Easy restaurant menu manager plugin <= 2.0.2 - Cross-Site Request Forgery to Menu Upload vulnerability

Cross-Site Request Forgery to Menu Upload vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Easy pdf restaurant menu upload versions = 2.0.2...

4.3CVSS6.9AI score0.00162EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2025/07/23 12:0 a.m.2 views

WordPress Restaurant Menu by MotoPress Cross-Site Request Forgery Vulnerability

WordPress Restaurant Menu by MotoPress is a menu plugin designed for the restaurant industry that supports free downloads and can be enhanced by adding paid extensions. WordPress Restaurant Menu by MotoPress has a cross-site request forgery vulnerability, the vulnerability stems from the WEB...

5.4CVSS6.9AI score0.00124EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/18 10:59 a.m.7 views

CVE-2025-54038

Cross-Site Request Forgery CSRF vulnerability in jetmonsters Restaurant Menu by MotoPress mp-restaurant-menu allows Cross Site Request Forgery.This issue affects Restaurant Menu by MotoPress: from n/a through = 2.4.6...

5.4CVSS5.9AI score0.00124EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/07/16 12:16 p.m.6 views

WordPress Restaurant Menu by MotoPress plugin <= 2.4.6 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Restaurant Menu by MotoPress versions = 2.4.6...

5.4CVSS6.6AI score0.00124EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/07/16 11:15 a.m.6 views

CVE-2025-54038

Cross-Site Request Forgery CSRF vulnerability in jetmonsters Restaurant Menu by MotoPress mp-restaurant-menu allows Cross Site Request Forgery.This issue affects Restaurant Menu by MotoPress: from n/a through = 2.4.6...

5.4CVSS0.00124EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/16 10:36 a.m.3 views

CVE-2025-54038 WordPress Restaurant Menu by MotoPress plugin <= 2.4.6 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in jetmonsters Restaurant Menu by MotoPress allows Cross Site Request Forgery. This issue affects Restaurant Menu by MotoPress: from n/a through 2.4.6...

5.4CVSS7.2AI score0.00124EPSS
Exploits0References1
CVE
CVE
added 2025/07/16 10:36 a.m.15 views

CVE-2025-54038

CVE-2025-54038 affects Restaurant Menu by MotoPress (WordPress plugin)

5.4CVSS5.9AI score0.00124EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/16 10:36 a.m.12 views

CVE-2025-54038 WordPress Restaurant Menu by MotoPress plugin <= 2.4.6 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in jetmonsters Restaurant Menu by MotoPress mp-restaurant-menu allows Cross Site Request Forgery.This issue affects Restaurant Menu by MotoPress: from n/a through = 2.4.6...

5.4CVSS0.00124EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.2 views

PT-2025-29760 · Motopress · My Restaurant Menu

Name of the Vulnerable Software and Affected Versions: Restaurant Menu by MotoPress versions through 2.4.6 Description: The software contains a Cross-Site Request Forgery CSRF flaw. This issue allows attackers to perform actions on behalf of authenticated users without their knowledge...

5.4CVSS6.4AI score0.00124EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.4 views

WordPress plugin Restaurant Menu by MotoPress 跨站请求伪造漏洞

WordPress Restaurant Menu by MotoPress is a menu plugin designed for the restaurant industry that supports free downloads and can be enhanced by adding paid extensions. WordPress Restaurant Menu by MotoPress has a cross-site request forgery vulnerability, the vulnerability stems from the WEB...

5.4CVSS6.8AI score0.00124EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/07/07 8:19 p.m.8 views

WordPress Easy restaurant menu manager plugin <= 2.0.1 - Authenticated (Contributot+) Stored Cross-Site Scripting via `nsc_eprm_menu_link` Shortcode vulnerability

Authenticated Contributot+ Stored Cross-Site Scripting via nsceprmmenulink Shortcode vulnerability discovered by Alex Thomas in WordPress Plugin Easy pdf restaurant menu upload versions = 2.0.1...

6.4CVSS5.6AI score0.00218EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/04 7:22 a.m.8 views

CVE-2025-6673 Easy restaurant menu manager <= 2.0.1 - Authenticated (Contributot+) Stored Cross-Site Scripting via `nsc_eprm_menu_link` Shortcode

The Easy restaurant menu manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's nsceprmmenulink shortcode in versions up to, and including 2.0.1, due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00218EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/04 12:0 a.m.8 views

PT-2025-27865 · WordPress · Easy Restaurant Menu Manager

Name of the Vulnerable Software and Affected Versions: Easy Restaurant Menu Manager plugin for WordPress versions up to and including 2.0.1 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the nsc eprm menu link shortcode. This...

6.4CVSS6.4AI score0.00218EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 9:19 a.m.5 views

CVE-2024-1399

The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping on user supplied attributes. This mak...

6.4CVSS4.9AI score0.00274EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:16 a.m.5 views

CVE-2024-5459

The Restaurant Menu and Food Ordering plugin for WordPress is vulnerable to unauthorized creation of data due to a missing capability check on 'addsection', 'addmenu', 'addmenuitem', and 'addmenupage' functions in all versions up to, and including, 2.4.16. This makes it possible for authenticated...

4.3CVSS5.2AI score0.00368EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:54 a.m.5 views

CVE-2024-29089

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Five Star Plugins Five Star Restaurant Menu allows Stored XSS.This issue affects Five Star Restaurant Menu: from n/a through 2.4.14...

6.5CVSS8.6AI score0.0032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:35 a.m.11 views

CVE-2024-32579

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GloriaFood Restaurant Menu – Food Ordering System – Table Reservation allows Stored XSS.This issue affects Restaurant Menu – Food Ordering System – Table Reservation: from n/a through 2.4.1...

6.5CVSS5.2AI score0.0032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:24 a.m.11 views

CVE-2024-49698

Missing Authorization vulnerability in PriceListo Best Restaurant Menu by PriceListo best-restaurant-menu-by-pricelisto.This issue affects Best Restaurant Menu by PriceListo: from n/a through = 1.4.2...

4.3CVSS5.9AI score0.00346EPSS
Exploits0References1
Rows per page
Query Builder