QwikSec

Security Database

CVE

CWE

Training

CVE-2022-2753

Published: Sep 19, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not sanitise and escape some of the reservation user inputs, allowing unauthenticated attackers to perform Cross-Site Scripting attacks logged in admin viewing the malicious reservation made

Vendor	Product	Versions
Unknown	Ketchup Restaurant Reservations	affected `1.0.0 - <= 1.0.0`

Weaknesses (CWE)

References

https://wpscan.com/vulnerability/3c6cc46e-e18a-4f34-ac09-f30ca74a1182

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.