Auto-Update: 2024-06-15T08:00:18.882015+00:00

2025-05-30 10:10:41 +00:00 · 2024-06-15 08:03:11 +00:00 · 2024-06-15 08:03:11 +00:00 · 36ecc3638f
commit 36ecc3638f
parent 5b258744ca
3 changed files with 59 additions and 15 deletions
--- a/CVE-2024/CVE-2024-13xx/CVE-2024-1399.json
+++ b/CVE-2024/CVE-2024-13xx/CVE-2024-1399.json
@ -0,0 +1,47 @@
+{
+  "id": "CVE-2024-1399",
+  "sourceIdentifier": "security@wordfence.com",
+  "published": "2024-06-15T06:15:50.250",
+  "lastModified": "2024-06-15T06:15:50.250",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "The Restaurant Menu \u2013 Food Ordering System \u2013 Table Reservation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@wordfence.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "NONE",
+          "baseScore": 6.4,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 3.1,
+        "impactScore": 2.7
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3064578%40menu-ordering-reservations%2Ftrunk&old=3022834%40menu-ordering-reservations%2Ftrunk&sfp_email=&sfph_mail=",
+      "source": "security@wordfence.com"
+    },
+    {
+      "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/4d419d9e-73c5-4d14-8da0-27a90924e0b5?source=cve",
+      "source": "security@wordfence.com"
+    }
+  ]
+}
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2024-06-15T06:00:18.366347+00:00
+2024-06-15T08:00:18.882015+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2024-06-15T04:15:14.313000+00:00
+2024-06-15T06:15:50.250000+00:00
 ```

 ### Last Data Feed Release
@ -33,24 +33,20 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs

 ```plain
-254200
+254201
 ```

 ### CVEs added in the last Commit

-Recently added CVEs: `3`
+Recently added CVEs: `1`

- [CVE-2024-5868](CVE-2024/CVE-2024-58xx/CVE-2024-5868.json) (`2024-06-15T04:15:13.373`)
- [CVE-2024-5871](CVE-2024/CVE-2024-58xx/CVE-2024-5871.json) (`2024-06-15T04:15:13.693`)
- [CVE-2024-6000](CVE-2024/CVE-2024-60xx/CVE-2024-6000.json) (`2024-06-15T04:15:14.313`)
+- [CVE-2024-1399](CVE-2024/CVE-2024-13xx/CVE-2024-1399.json) (`2024-06-15T06:15:50.250`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `2`
+Recently modified CVEs: `0`

- [CVE-2023-52076](CVE-2023/CVE-2023-520xx/CVE-2023-52076.json) (`2024-06-15T04:15:10.857`)
- [CVE-2024-23121](CVE-2024/CVE-2024-231xx/CVE-2024-23121.json) (`2024-06-15T04:15:12.550`)


 ## Download and Usage
--- a/_state.csv
+++ b/_state.csv
@ -237851,7 +237851,7 @@ CVE-2023-52072,0,0,02127eb9ae4273b1ad79732d9280cd4f630158412943ba361c9a56a2bce35
 CVE-2023-52073,0,0,123468189ce68f3cfbeab56f91e9e4c60c12979b9e605872064a295c45e39979,2024-01-11T20:05:37.137000
 CVE-2023-52074,0,0,0ba44112273a0d5d6d6e85dfed6e54972c031627d1645b4e3705e6663e82592d,2024-01-11T20:05:27.817000
 CVE-2023-52075,0,0,849cf25ae1b4e576588db3e9f900c5f9565291ce2cef30c02ade7f33ef0d4045,2024-01-04T16:16:36.747000
-CVE-2023-52076,0,1,96bb30c05a0b24e0b19e11829076e8391e5c9cc1f31cc1ffa3b43447ccb54b0b,2024-06-15T04:15:10.857000
+CVE-2023-52076,0,0,96bb30c05a0b24e0b19e11829076e8391e5c9cc1f31cc1ffa3b43447ccb54b0b,2024-06-15T04:15:10.857000
 CVE-2023-52077,0,0,7ea9bdcc1b4ed6b7240096b1c1151d23e5ff74fd5076c4fa5ecd11d25ef4132d,2024-01-04T23:11:39.740000
 CVE-2023-52079,0,0,82f653e7d5fbd8aa7819b340211d406b5545c82ffb4ccb81c0b1fb33874cea94,2024-01-04T19:24:22.547000
 CVE-2023-52080,0,0,97499d29b9ff14cdd0b7095b579b1f036c14a40044428f9bd8485d56e866cc4c,2024-04-30T13:11:16.690000
@ -241588,6 +241588,7 @@ CVE-2024-1395,0,0,bc906c24f3b97a1f76fb28d9eb27a1438a7ca78483d0c0a7452e9b7efa2da9
 CVE-2024-1396,0,0,c2c7f8124754e0c20b02f3a3637cca1d95a3c2b253208efd7a2814f2d0550bd5,2024-05-02T18:00:37.360000
 CVE-2024-1397,0,0,e6d8c9c2beca75d3fdc5f918cb423cf21913a9c807f46126d5b49c29c7bd60f0,2024-03-13T12:33:51.697000
 CVE-2024-1398,0,0,2b28153468f4d42956e25c3f4649f2a8573b6a6d707501b23def6a1cde88644b,2024-03-04T13:58:23.447000
+CVE-2024-1399,1,1,4f22f8fbdf6bd2ee9ac50225afd324c2f5cc4f8ba0377a15f0f74710e6d70d94,2024-06-15T06:15:50.250000
 CVE-2024-1400,0,0,295a10f36c3e13d694d09cafc6872c0c48f9e2b4c87da0889327ecdac7abe4ac,2024-03-12T12:40:13.500000
 CVE-2024-1401,0,0,e64fccc3b34820f20d6e2d11354067ac2e7b2a8c6994cb9d811033354d258916,2024-03-19T16:33:58.680000
 CVE-2024-1402,0,0,cd29a338f0790d41ac5c4acb03e9968df65943eeb751c1867df07c9625b41a9a,2024-05-30T12:15:10.573000
@ -243902,7 +243903,7 @@ CVE-2024-23118,0,0,2a710ffc24b98413c0e2df0c0c64682e3878440889d1038072b49d9104f75
 CVE-2024-23119,0,0,dc7a02dfe6c2319112aa9c9c7ba24d29c0a54406c32b5bc7828bc06ecc1e505b,2024-04-02T12:50:42.233000
 CVE-2024-2312,0,0,b61108ae65321d61a758b0c732ce308a7e62bd5c3710897745a7af4ce6324077,2024-04-26T09:15:12.073000
 CVE-2024-23120,0,0,0bde07239643990ce52a2b119406a2fe2b75980d605c54ab173fa281d186044a,2024-06-15T03:15:09.170000
-CVE-2024-23121,0,1,63c89d44d13ff73da2a5ca3921fdf1d827a06f578facd9c0fce9fcd43ca51479,2024-06-15T04:15:12.550000
+CVE-2024-23121,0,0,63c89d44d13ff73da2a5ca3921fdf1d827a06f578facd9c0fce9fcd43ca51479,2024-06-15T04:15:12.550000
 CVE-2024-23122,0,0,53a6a7f808f40f9f8ccc6c9426a05387fb59e2867d6b512f9c97f02c17acdf90,2024-03-13T03:15:06.390000
 CVE-2024-23123,0,0,80a373f3449c95eb380a5a70c0b7efa82991d89500c1ac1323995b54768d154d,2024-03-13T03:15:06.443000
 CVE-2024-23124,0,0,310e8c4cd574e0a0147b3ffefdbfe36a36709549adc5926c84549e0d2e3d6fc7,2024-03-13T15:15:50.783000
@ -254163,8 +254164,8 @@ CVE-2024-5845,0,0,109c5cd760bc6bcfea448de275120469251e47b6c5f10dfa49429d52e7e145
 CVE-2024-5846,0,0,74cdfbc72d0ccccfb4960f8d9f050011c9367ff3a9087fe2085d5d3a9a567ba2,2024-06-14T06:15:18.070000
 CVE-2024-5847,0,0,fb0db0442787e77827fbf12115b06f51612cc2a1c9a9d0bc9a8c9faefc3d9705,2024-06-14T06:15:18.340000
 CVE-2024-5851,0,0,1ff86bf427427298fe5dc39bbfedb897b9870fd2315cf065507e70165fb41d41,2024-06-13T18:36:09.013000
-CVE-2024-5868,1,1,6d356b935ad03f0aa043c8eb32fb37ec0c1335aafc54b4d7c42c1bf12208ae21,2024-06-15T04:15:13.373000
-CVE-2024-5871,1,1,017dd106963a452a793863ea96c2a11162e709ce38935078eb44fe3dd29b4249,2024-06-15T04:15:13.693000
+CVE-2024-5868,0,0,6d356b935ad03f0aa043c8eb32fb37ec0c1335aafc54b4d7c42c1bf12208ae21,2024-06-15T04:15:13.373000
+CVE-2024-5871,0,0,017dd106963a452a793863ea96c2a11162e709ce38935078eb44fe3dd29b4249,2024-06-15T04:15:13.693000
 CVE-2024-5873,0,0,4affe4b1f71505ca05298a33c7e23c3ae147869580237755bed2d180fbea1b8e,2024-06-12T08:15:51.550000
 CVE-2024-5891,0,0,da4ba5748ecb097f5befd86d4787f2c76143132bf594110b21f16b774e08e15d,2024-06-13T18:36:09.010000
 CVE-2024-5892,0,0,890747e3858b777381fac245c58cda030faeadae1530ec4012d9670fde261a4e,2024-06-13T18:36:09.013000
@ -254197,5 +254198,5 @@ CVE-2024-5985,0,0,49a38267a9ce797f1b9e3a5a1b0820a2bd8e915256f564f2f744e9be24bef4
 CVE-2024-5994,0,0,b678ba7844dbb9440c0118c55fb917843e6316e30468d41dd4d372cdc7eeb766,2024-06-14T07:15:51.130000
 CVE-2024-5995,0,0,ede0470f9d86fed4f618bc468676b26641d05d4bd4a249ad161aea8b2cec90ce,2024-06-14T08:15:43.097000
 CVE-2024-5996,0,0,39e608463feedd3b2c4692002beac62fb7b065fa02bb74368f2c8f4d20db9740,2024-06-14T09:15:11.010000
-CVE-2024-6000,1,1,9ecd9bce478128bfa01786216d4c2f4b79bba7d7c3700482d0e8a2bbf0746324,2024-06-15T04:15:14.313000
+CVE-2024-6000,0,0,9ecd9bce478128bfa01786216d4c2f4b79bba7d7c3700482d0e8a2bbf0746324,2024-06-15T04:15:14.313000
 CVE-2024-6003,0,0,2b437b326d800bdf64ea83b097c2b01785400c7a1545b390184100034051b372,2024-06-14T22:15:10.837000