CVE-2022-2696

MEDIUM

Restaurant Menu - Food Ordering System - Auth Bypass

Title source: llm

Description

The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to authorization bypass via several AJAX actions in versions up to, and including 2.3.0 due to missing capability checks and missing nonce validation. This makes it possible for authenticated attackers with minimal permissions to perform a wide variety of actions such as modifying the plugin's settings and modifying the ordering system preferences.

References (4)

Core 4

Core References

Third Party Advisory

https://plugins.trac.wordpress.org/browser/menu-ordering-reservations/trunk/includes/admin/class-glf-admin-screens.php?rev=2664283

Patch, Third Party Advisory

https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2793398%40menu-ordering-reservations&new=2793398%40menu-ordering-reservations&sfp_email=&sfph_mail=

Third Party Advisory

https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-2696

https://www.wordfence.com/threat-intel/vulnerabilities/id/01486af8-b378-4663-a9c5-167b8580db94?source=cve

Scores

CVSS v3 6.3

EPSS 0.0019

EPSS Percentile 40.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-862

Status published

Products (2)

gloriafood/Restaurant Menu – Food Ordering System – Table Reservation < 2.3.0

oracle/restaurant_menu_-_food_ordering_system_-_table_reservation < 2.3.1

Published Nov 03, 2022

Tracked Since Feb 18, 2026