Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:37 p.m.9 views

CVE-2022-2754

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks...

9.8CVSS8AI score0.37709EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:36 p.m.4 views

CVE-2022-2753

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not sanitise and escape some of the reservation user inputs, allowing unauthenticated attackers to perform Cross-Site Scripting attacks logged in admin viewing the malicious reservation made...

6.1CVSS6.2AI score0.83373EPSS
Exploits2References1
NVD
NVD
added 2022/09/19 2:15 p.m.16 views

CVE-2022-2754

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks...

9.8CVSS0.37709EPSS
Exploits2References1
OSV
OSV
added 2022/09/19 2:15 p.m.4 views

CVE-2022-2754

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks...

9.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2022/09/19 2:15 p.m.11 views

CVE-2022-2753

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not sanitise and escape some of the reservation user inputs, allowing unauthenticated attackers to perform Cross-Site Scripting attacks logged in admin viewing the malicious reservation made...

6.1CVSS0.83373EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/09/19 2:15 p.m.2 views

CVE-2022-2753

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not sanitise and escape some of the reservation user inputs, allowing unauthenticated attackers to perform Cross-Site Scripting attacks logged in admin viewing the malicious reservation made...

6.1CVSS6.4AI score0.83373EPSS
Exploits2References2
Prion
Prion
added 2022/09/19 2:15 p.m.10 views

Sql injection

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks...

7.5CVSS9.8AI score0.37709EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/09/19 2:1 p.m.22 views

CVE-2022-2754 Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Blind SQLi

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks...

10AI score0.37709EPSS
Exploits2References1
CVE
CVE
added 2022/09/19 2:1 p.m.79 views

CVE-2022-2754

Summary (CVE-2022-2754) The WordPress plugin “Ketchup Restaurant Reservations” is affected up to version 1.0.0. The vulnerability stems from not validating and escaping certain reservation parameters before using them in SQL statements, enabling unauthenticated SQL injection. This is documented a...

9.8CVSS9.9AI score0.37709EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2022/09/19 2:1 p.m.62 views

CVE-2022-2753

The CVE-2022-2753 vulnerability affects the WordPress plugin Ketchup Restaurant Reservations (

6.1CVSS6AI score0.83373EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/09/19 2:1 p.m.18 views

CVE-2022-2753 Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Stored XSS

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not sanitise and escape some of the reservation user inputs, allowing unauthenticated attackers to perform Cross-Site Scripting attacks logged in admin viewing the malicious reservation made...

6.2AI score0.83373EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/09/19 12:0 a.m.2 views

WordPress plugin Ketchup Restaurant Reservations SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

9.8CVSS8.5AI score0.37709EPSS
Exploits2References2
CNNVD
CNNVD
added 2022/09/19 12:0 a.m.3 views

WordPress plugin Ketchup Restaurant Reservations 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

6.1CVSS5.9AI score0.83373EPSS
Exploits2References2
Patchstack
Patchstack
added 2022/09/06 12:0 a.m.17 views

WordPress Ketchup Restaurant Reservations plugin <= 1.0.0 - Unauthenticated Blind SQL Injection (SQLi) vulnerability

Unauthenticated Blind SQL Injection SQLi vulnerability discovered by Bastijn Ouwendijk in WordPress Ketchup Restaurant Reservations plugin versions = 1.0.0. Solution Deactivate and delete. This plugin has been closed as of August 29, 2022 and is not available for download. This closure is...

9.8CVSS2.3AI score0.37709EPSS
Exploits2References1Affected Software1
WPVulnDB
WPVulnDB
added 2022/09/06 12:0 a.m.27 views

Ketchup Restaurant Reservations <= 1.0.0 - Unauthenticated Blind SQLi

The plugin does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks PoC As unauthenticated, fill the reservation form it's on a page where the reservationform is embed, intercept the...

9.8CVSS1.1AI score0.37709EPSS
Exploits2Affected Software1
Patchstack
Patchstack
added 2022/09/06 12:0 a.m.14 views

WordPress Ketchup Restaurant Reservations plugin <= 1.0.0 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

Unauthenticated Stored Cross-Site Scripting XSS vulnerability discovered by Bastijn Ouwendijk in WordPress Ketchup Restaurant Reservations plugin versions = 1.0.0. Solution Deactivate and delete. This plugin has been closed as of August 29, 2022 and is not available for download. This closure is...

6.1CVSS1.9AI score0.83373EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder