Description
WordPress Plugin Restaurant Menu-Food Ordering System-Table Reservation is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change plugin�s settings, or modify the ordering system preferences. WordPress Plugin Restaurant Menu-Food Ordering System-Table Reservation version 2.3.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.3.1 or latest
References
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-2696
https://plugins.svn.wordpress.org/menu-ordering-reservations/trunk/readme.txt
Related Vulnerabilities
Apache Tomcat Improper Authentication Vulnerability (CVE-2011-5063)
WordPress Plugin Visitors Online by BestWebSoft Cross-Site Scripting (0.9)
Envoy Proxy Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27492)
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (4.9.2)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-17571)