Reservation Diary Redi Restaurant Reservation vulnerabilities
6 known vulnerabilities affecting reservation_diary/redi_restaurant_reservation.
Total CVEs
6
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2021-24299P3MEDIUMCVSS 6.1PoC≥ 21.0426, < 21.04262021-05-17
CVE-2021-24299 [MEDIUM] CWE-79 CVE-2021-24299: The ReDi Restaurant Reservation WordPress plugin before 21.0426 provides the functionality to let us
The ReDi Restaurant Reservation WordPress plugin before 21.0426 provides the functionality to let users make restaurant reservations. These reservations are stored and can be listed on an 'Upcoming' page provided by the plugin. An unauthenticated user can fill in the form to make a restaurant reservation. The form to make a restaurant reservation fie
nvd
CVE-2023-36510P3HIGHCVSS 7.3≥ n/a, ≤ 23.02112024-12-13
CVE-2023-36510 [HIGH] CWE-862 CVE-2023-36510: Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Exploiti
Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ReDi Restaurant Reservation: from n/a through 23.0211.
nvd
CVE-2024-38737P4MEDIUMCVSS 5.4≥ n/a, ≤ 24.04222024-11-01
CVE-2024-38737 [MEDIUM] CWE-862 CVE-2024-38737: Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Accessin
Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReDi Restaurant Reservation: from n/a through 24.0422.
nvd
CVE-2024-31299P4HIGHCVSS 7.1≥ n/a, ≤ 24.01282024-04-10
CVE-2024-31299 [HIGH] CWE-352 CVE-2024-31299: Cross-Site Request Forgery (CSRF) vulnerability in Reservation Diary ReDi Restaurant Reservation all
Cross-Site Request Forgery (CSRF) vulnerability in Reservation Diary ReDi Restaurant Reservation allows Cross-Site Scripting (XSS).This issue affects ReDi Restaurant Reservation: from n/a through 24.0128.
nvd
CVE-2024-29806P4MEDIUMCVSS 6.1≥ n/a, ≤ 24.01282024-03-27
CVE-2024-29806 [MEDIUM] CWE-79 CVE-2024-29806: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Reservation Diary ReDi Restaurant Reservation allows Reflected XSS.This issue affects ReDi Restaurant Reservation: from n/a through 24.0128.
nvd
CVE-2024-31385P4MEDIUMCVSS 4.3≥ n/a, ≤ 24.01282024-04-15
CVE-2024-31385 [MEDIUM] CWE-352 CVE-2024-31385: Cross-Site Request Forgery (CSRF) vulnerability in Reservation Diary ReDi Restaurant Reservation.Thi
Cross-Site Request Forgery (CSRF) vulnerability in Reservation Diary ReDi Restaurant Reservation.This issue affects ReDi Restaurant Reservation: from n/a through 24.0128.
nvd