ND Restaurant Reservations <= 1.3 - Unauthenticated Options Change

Affects Plugin

fixed in version 1.5

References

CVE 2019-15819
URL https://blog.nintechnet.com/privilege-escalation-vulnerability-in-wordpress-nd-restaurant-reservations-plugin/

Classification

Type PRIVESC
OWASP Top 10 A2: Broken Authentication and Session Management
CWE CWE-269

Miscellaneous

Original Researcher Jerome Bruandet (nintechnet.com)
Views 2887
Verified No
WPVDB ID 9501

Timeline

Publicly Published 2019-08-09 (2 months ago)
Added 2019-08-09 (2 months ago)
Last Updated 2019-08-30 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin