2 matches found
CVE-2022-2754
Summary (CVE-2022-2754) The WordPress plugin “Ketchup Restaurant Reservations” is affected up to version 1.0.0. The vulnerability stems from not validating and escaping certain reservation parameters before using them in SQL statements, enabling unauthenticated SQL injection. This is documented a...
CVE-2022-2754 Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Blind SQLi
The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks...