cleantalk
Vulnerabilities and Security Researches

Restaurant Menu and Food Ordering, CVE-2021-24722

CVE, Research URL

CVE-2021-24722

Home page URL

Security reports for Restaurant Menu and Food Ordering

Application

Restaurant Menu and Food Ordering

Published on
Nov 01, 2021
Research Description
The Restaurant Menu by MotoPress WordPress plugin before 2.4.2 does not properly sanitize or escape inputs when creating new menu items, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
Affected versions
Min -, max 2.4.2.
Status
vulnerable
Previous vulnerability researches
Restaurant Menu and Food Ordering (CVE-2025-30846) , Apr 02, 2025
Restaurant Menu and Food Ordering (CVE-2021-24722) , Jun 06, 2024
Restaurant Menu and Food Ordering (CVE-2025-54038) , Jul 18, 2025
New vulnerability
Wallet System for WooCommerce – Digital Wallet, Cashback Rewards, Recharge User Wallets, View Transaction History (CVE-2025-54041) , Jul 19, 2025
Chatbox Manager (CVE-2025-48167) , Jul 19, 2025
Zuppler Online Ordering (CVE-2025-6053) , Jul 19, 2025
Counter live visitors for WooCommerce (CVE-2025-7359) , Jul 19, 2025
AntiSpam for Contact Form 7 (CVE-2025-54020) , Jul 19, 2025