Lucene search
+L

11 matches found

redhatcve
redhatcve
added 2025/05/23 8:28 a.m.4 views

CVE-2024-5427

The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input sanitization and outp...

6.4CVSS5AI score0.00321EPSS
Exploits0References1
attackerkb
attackerkb
added 2024/05/31 7:15 a.m.3 views

CVE-2024-5427

The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input sanitization and outp...

6.4CVSS6.1AI score0.00321EPSS
Exploits0References5
osv
osv
added 2024/05/31 7:15 a.m.8 views

CVE-2024-5427

The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input sanitization and outp...

5.4CVSS6AI score0.00321EPSS
Exploits0References4
cvelist
cvelist
added 2024/05/31 6:40 a.m.45 views

CVE-2024-5427 WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce <= 2.2.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Reservation Form Shortcode

The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input sanitization and outp...

6.4CVSS5.9AI score0.00321EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2024/05/31 6:40 a.m.17 views

CVE-2024-5427 WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce <= 2.2.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Reservation Form Shortcode

The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input sanitization and outp...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References4
patchstack
patchstack
added 2024/05/31 2:38 a.m.5 views

WordPress WPCafe plugin <= 2.2.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Reservation Form Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Reservation Form Shortcode vulnerability discovered by Krzysztof Zając in WordPress Plugin WPCafe versions = 2.2.24...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2024/05/31 12:0 a.m.12 views

PT-2024-36150 · WordPress · Wpcafe

Name of the Vulnerable Software and Affected Versions: WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress versions up to, and including, 2.2.24 Description: The issue arises from insufficient input sanitization and output escaping on...

6.4CVSS6.5AI score0.00321EPSS
Exploits0References7
wpvulndb
wpvulndb
added 2024/05/30 12:0 a.m.18 views

WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce < 2.2.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via Reservation Form Shortcode

Description The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Reservation Form shortcode in all versions up to, and including, 2.2.24 due to insufficient input...

6.4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
zdt
zdt
added 2022/01/10 12:0 a.m.258 views

Online Railway Reservation System 1.0 - (id) SQL Injection Vulnerability

Exploit Title: Online Railway Reservation System 1.0 - 'id' SQL Injection Unauthenticated Exploit Author: twseptian Vendor Homepage: https://www.sourcecodester.com/php/15121/online-railway-reservation-system-phpoop-project-free-source-code.html Software Link:...

0.5AI score
Exploits0
exploitdb
exploitdb
added 2021/05/24 12:0 a.m.217 views

WordPress Plugin ReDi Restaurant Reservation 21.0307 - &#039;Comment&#039; Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin ReDi Restaurant Reservation 21.0307 - 'Comment' Stored Cross-Site Scripting XSS Date: 2021-05-10 Exploit Author: Bastijn Ouwendijk Vendor Homepage: https://reservationdiary.eu/ Software Link: https://wordpress.org/plugins/redi-restaurant-reservation/ Version: 21.03...

6.1CVSS6.3AI score0.05501EPSS
Exploits5
cvelist
cvelist
added 2019/06/20 1:47 p.m.20 views

CVE-2019-6963

A heap-based buffer overflow in cosadhcpv4dml.c in the RDK RDKB-20181217-1 CcspPandM module may allow attackers with login credentials to achieve remote code execution by crafting a long buffer in the "Comment" field of an IP reservation form in the admin panel. This is related to the...

9.2AI score0.02441EPSS
Exploits0References1
Rows per page
Query Builder