PT-2026-5611 · WordPress · Five Star Restaurant Reservations

Bob Matyas

Publicado

2026-02-02

Atualizado

2026-02-02

CVE-2026-0658

CVSS v3.1

4.3

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Five Star Restaurant Reservations WordPress plugin versions prior to 2.7.9

Description The plugin lacks CSRF checks in certain bulk actions. This could allow attackers to make logged-in administrators perform unintended actions, such as deleting bookings, through Cross-Site Request Forgery attacks. The affected actions involve bulk operations performed by administrators.

Recommendations Update the Five Star Restaurant Reservations WordPress plugin to version 2.7.9 or later.

Exploit

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-352

Identificadores relacionados

CVE-2026-0658

Produtos afetados

Five Star Restaurant Reservations

PT-2026-5611 · WordPress · Five Star Restaurant Reservations

CVE-2026-0658

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5