CVE-2022-2754

Summary

The Ketchup Restaurant Reservations WordPress plugin through 1.0.0 does not validate and escape some reservation parameters before using them in SQL statements, which could allow unauthenticated attackers to perform SQL Injection attacks

Affected Software

VendorProductVersion RangeStatus
UnknownKetchup Restaurant Reservations1.0.0 <= 1.0.0affected

Weaknesses

  • CWE-89: CWE-89 SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References