Lucene search
K

6 matches found

ThreatPost
ThreatPost
added 2021/05/24 7:33 p.m.43 views

Reservation System Fixes Easy-to-Exploit XSS Bug

An easy-to-exploit bug impacting the WordPress plugin ReDi Restaurant Reservation allows unauthenticated attackers to pilfer reservation data and customer personal identifiable information by simply submitting a malicious snippet of JavaScript code into the reservation comment field. The bug...

6.1CVSS6.4AI score0.05501EPSS
Exploits5References9
0day.today
0day.today
added 2021/05/24 12:0 a.m.51 views

WordPress ReDi Restaurant Reservation 21.0307 Plugin - (Comment) Stored Cross-Site Scripting

Exploit Title: WordPress Plugin ReDi Restaurant Reservation 21.0307 - 'Comment' Stored Cross-Site Scripting XSS Exploit Author: Bastijn Ouwendijk Vendor Homepage: https://reservationdiary.eu/ Software Link: https://wordpress.org/plugins/redi-restaurant-reservation/ Version: 21.0307 and earlier...

6.1CVSS6.3AI score0.05501EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/05/24 12:0 a.m.217 views

WordPress Plugin ReDi Restaurant Reservation 21.0307 - 'Comment' Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin ReDi Restaurant Reservation 21.0307 - 'Comment' Stored Cross-Site Scripting XSS Date: 2021-05-10 Exploit Author: Bastijn Ouwendijk Vendor Homepage: https://reservationdiary.eu/ Software Link: https://wordpress.org/plugins/redi-restaurant-reservation/ Version: 21.03...

6.1CVSS6.3AI score0.05501EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/05/24 12:0 a.m.163 views

WordPress ReDi Restaurant Reservation 21.0307 Cross Site Scripting

Exploit Title: WordPress Plugin ReDi Restaurant Reservation 21.0307 - 'Comment' Stored Cross-Site Scripting XSS Date: 2021-05-10 Exploit Author: Bastijn Ouwendijk Vendor Homepage: https://reservationdiary.eu/ Software Link: https://wordpress.org/plugins/redi-restaurant-reservation/ Version: 21.03...

6.3AI score0.05501EPSS
Exploits5
NVD
NVD
added 2021/05/17 5:15 p.m.13 views

CVE-2021-24299

The ReDi Restaurant Reservation WordPress plugin before 21.0426 provides the functionality to let users make restaurant reservations. These reservations are stored and can be listed on an 'Upcoming' page provided by the plugin. An unauthenticated user can fill in the form to make a restaurant...

6.1CVSS0.05501EPSS
Exploits5References2
CVE
CVE
added 2021/05/17 4:48 p.m.109 views

CVE-2021-24299

The CVE-2021-24299 entry concerns the ReDi Restaurant Reservation WordPress plugin (versions before 21.0426). An unauthenticated user can submit a reservation with a crafted Comment field that is not properly validated, enabling stored XSS. The payload is later executed when the plugin loads the ...

6.1CVSS6AI score0.05501EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder