Vulnerability CVE-2022-2754


Published: 2022-09-19

Description:
The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://wpscan.com/vulnerability/e3c6d137-ff6e-432a-a21a-b36dc81f73c5

Copyright 2022, cxsecurity.com

 

Back to Top