WordPress Quick Restaurant 2.0.2 XSS / CSRF / IDOR / Missing Authorization
On January 16, 2023, the Wordfence Threat Intelligence team responsibly disclosed several vulnerabilities in Quick Restaurant Menu, a WordPress
plugin that allows users to set up restaurant menus on their sites. This
plugin is vulnerable to missing authorization, insecure direct object reference, cross site request forgery as well as cross site scripting in versions up to, and including, 2.0.2.
https://packetstormsecurity.com/files/170842/wpquickrestaurant202-xssxsrfidor.t xt
Thu, 02 Feb 2023 16:31:08 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com