[WordPress Quick Restaurant Menu Plugin] (versions 2.0.2 and older) Vulnerability to Cross-Site Request Forgery (CSRF)

Importance (CVSS3.0)

★★★★★★★★☆☆ 8.1/ 10　 - High

Details

A Cross-Site Request Forgery (CSRF) vulnerability was discovered in WordPress Quick Restaurant Menu Plugin.

Because of this, malicious attackers can make users with higher privileges execute unwanted actions under the current authentication.

Solutions

Update the WordPress Quick Restaurant Menu Plugin to the newest version (2.1.0 and newer).

Source

CVE-2023-0554

Vulnerability derails

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress Quick Restaurant Menu Plugin](versions 2.0.2 and older) is Vulnerable for Cross-Site Request Forgery(CSRF) ”, by WS Security is licensed under CC BY 4.0.