CVE-2024-1855

MEDIUM

WPCafe < 2.2.23 - Unauthenticated Server-Side Request Forgery via wpc_check_for_submission

Title source: llm

Description

The WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table Reservation plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.2.23 via the wpc_check_for_submission function. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from the web application.

References (3)

Core 3

Core References

Product

https://plugins.trac.wordpress.org/browser/wp-cafe/trunk/core/action/wpc-ajax-action.php#L76

Patch

https://plugins.trac.wordpress.org/changeset/3084054/wp-cafe/trunk/core/action/wpc-ajax-action.php

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/5f83c19e-1b75-4fea-b4de-f7f844a449c0?source=cve

Scores

CVSS v3 5.3

EPSS 0.0044

EPSS Percentile 34.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-918

Status published

Products (2)

arraytics/WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System < 2.2.23

themewinter/wpcafe < 2.2.24

Published May 23, 2024

Tracked Since Feb 18, 2026