2 matches found
CVE-2022-29923
CVE-2022-29923 is an authenticated reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin ThingsForRestaurants Quick Restaurant Reservations . The issue affects the plugin versions up to and including 1.4.1 and requires an administrator or higher user role to exploit (attack v...
CVE-2022-44739
The CVE-2022-44739 entry concerns the WordPress ThingsForRestaurants Quick Restaurant Reservations plugin (versions ≤ 1.5.4) and describes a Cross-Site Request Forgery (CSRF) vulnerability. The cited sources consistently indicate CSRF as the flaw, enabling an attacker to trick authenticated users...