Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fivestarplugins five star restaurant menu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-5459
The Restaurant Menu and Food Ordering plugin for WordPress is vulnerable to unauthorized creation of data due to a missing capability check on 'add_section', 'add_menu', 'add_menu_item', and 'add_menu_page' functions in all versions up to, ...
Fivestarplugins Five Star Restaurant Menu
668
VMScore
CVE-2020-29045
The food-and-drink-menu plugin up to and including 2.2.0 for WordPress allows remote malicious users to execute arbitrary code because of an unserialize operation on the fdm_cart cookie in load_cart_from_cookie in includes/class-cart-manager.php.
Fivestarplugins Five Star Restaurant Menu
NA
CVE-2024-24838
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Five Star Plugins Five Star Restaurant Reviews allows Stored XSS.This issue affects Five Star Restaurant Reviews: from n/a up to and including 2.3.5.
Fivestarplugins Five Star Restaurant Menu
NA
CVE-2023-5340
The Five Star Restaurant Menu and Food Ordering WordPress plugin prior to 2.4.11 unserializes user input via an AJAX action available to unauthenticated users, allowing them to perform PHP Object Injection when a suitable gadget is present on the blog.
Fivestarplugins Five Star Restaurant Menu
NA
CVE-2023-37985
Cross-Site Request Forgery (CSRF) vulnerability in FiveStarPlugins Restaurant Menu and Food Ordering plugin <= 2.4.6 versions.
Fivestarplugins Five Star Restaurant Menu
NA
CVE-2023-34017
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in FiveStarPlugins Five Star Restaurant Reservations plugin <= 2.6.7 versions.
Fivestarplugins Five Star Restaurant Menu
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6280
CVE-2024-5346
CVE-2024-30078
CVE-2022-45803
CVE-2024-36886
SQL
CVE-2024-24553
IMAP
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started