Description
WordPress Plugin Restaurant Menu-Food Ordering System-Table Reservation is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change plugin�s settings, or modify the ordering system preferences. WordPress Plugin Restaurant Menu-Food Ordering System-Table Reservation version 2.3.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.3.1 or latest
References
https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-2696
https://plugins.svn.wordpress.org/menu-ordering-reservations/trunk/readme.txt
Related Vulnerabilities
Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.15)
WordPress Plugin JetWidgets For Elementor Multiple Cross-Site Scripting Vulnerabilities (1.0.8)
WordPress Plugin vSlider Multi Image Slider for WordPress Arbitrary File Upload (4.1.2)
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.5.1)