Lucene search
K
ThemewinterWpcafe

6 matches found

CVE
CVE
added 2024/12/09 11:30 a.m.87 views

CVE-2023-47805

CVE-2023-47805: WordPress WPCafe plugin

9.8CVSS7.3AI score0.0049EPSS
CVE
CVE
added 2024/05/23 1:56 a.m.74 views

CVE-2024-1855

CVE-2024-1855 affects the WPCafe – Online Food Ordering, Restaurant Menu, Delivery and Reservations for WordPress. The vulnerability is a Server-Side Request Forgery (SSRF) in all versions up to 2.2.23, exploitable via the wpc_check_for_submission function. This allows unauthenticated attackers t...

5.3CVSS5.7AI score0.00436EPSS
CVE
CVE
added 2024/06/25 5:41 a.m.68 views

CVE-2024-5431

CVE-2024-5431 affects the WPCafe WordPress plugin for WooCommerce. The vulnerability is a Local File Inclusion via the shortcode parameter reservation_extra_field in versions up to and including 2.2.25, allowing authenticated users with Contributor level access or higher to include remote files o...

8.8CVSS8.7AI score0.00593EPSS
CVE
CVE
added 2024/07/09 12:18 p.m.65 views

CVE-2024-37513

CVE-2024-37513: Affected software is Themewinter WPCafe (WordPress plugin) with versions from n/a up to 2.2.27. The root cause is improper limitation of a pathname to a restricted directory, enabling a Path Traversal vulnerability. This could potentially allow an attacker to access restricted fil...

8.8CVSS8.6AI score0.00563EPSS
CVE
CVE
added 2024/05/31 6:40 a.m.65 views

CVE-2024-5427

The CVE-2024-5427 entry concerns the WPCafe plugin for WordPress, with a Stored Cross-Site Scripting (XSS) flaw in the Reservation Form shortcode present in versions up to and including 2.2.24. The root cause is insufficient input sanitization and output escaping on user-supplied attributes, enab...

6.4CVSS5.9AI score0.00321EPSS
CVE
CVE
added 2024/08/13 10:57 a.m.57 views

CVE-2024-43135

CVE-2024-43135 is a path traversal vulnerability in Themewinter WPCafe (WordPress plugin) that allows PHP local file inclusion. Affected versions are WPCafe up to 2.2.28; the issue stems from improper limitation of a pathname to a restricted directory. The vulnerability is rated high for impact, ...

8.8CVSS6.9AI score0.00525EPSS