2 matches found
CVE-2024-1382
The Restaurant Reservations WordPress plugin is vulnerable to Local File Inclusion in versions ≤ 1.9 via the nd_rst_layout attribute of the nd_rst_search shortcode. Authenticated attackers with Contributor+ access can include and execute arbitrary PHP files on the server, potentially bypassing ac...
WordPress Restaurant Reservations Plugin <= 1.9 is vulnerable to Local File Inclusion
Software Restaurant Reservations Type Plugin Vulnerable versions = 1.9 Fixed in 2.0 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-1382 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 9092a13ced79 Credits Lucio Sá Required privilege Contributor...