CVE-2023-34017
📋 TL;DR
Unauthenticated reflected cross-site scripting (XSS) vulnerability in the Five Star Restaurant Reservations WordPress plugin allows attackers to inject malicious scripts into web pages viewed by users. This affects WordPress sites running plugin versions 2.6.7 and earlier. Attackers can steal session cookies, redirect users, or perform actions on their behalf.
💻 Affected Systems
- Five Star Restaurant Reservations WordPress plugin
📦 What is this software?
Five Star Restaurant Menu by Fivestarplugins
⚠️ Risk & Real-World Impact
Worst Case
Attackers steal administrator session cookies, gain full control of WordPress site, install backdoors, deface website, or steal sensitive customer reservation data.
Likely Case
Attackers steal user session cookies, redirect visitors to malicious sites, or perform limited actions within the user's context.
If Mitigated
Attack blocked by web application firewall (WAF) or browser XSS protection; minimal impact with proper security headers.
🎯 Exploit Status
Reflected XSS typically requires user to click malicious link; exploit code is publicly available in vulnerability databases.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 2.6.8 or later
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'Five Star Restaurant Reservations'. 4. Click 'Update Now' if available. 5. Alternatively, download latest version from WordPress repository and manually update.
🔧 Temporary Workarounds
Implement Content Security Policy (CSP)
allAdd CSP headers to block inline scripts and restrict script sources.
Add to .htaccess: Header set Content-Security-Policy "default-src 'self'; script-src 'self'"
Add to nginx config: add_header Content-Security-Policy "default-src 'self'; script-src 'self'";
Enable WAF with XSS Protection
allConfigure web application firewall to detect and block XSS payloads.
ModSecurity rules: SecRule ARGS "<script" "id:1,phase:2,deny"
🧯 If You Can't Patch
- Disable the Five Star Restaurant Reservations plugin immediately
- Implement strict input validation and output encoding in custom code
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel: Plugins > Installed Plugins, verify Five Star Restaurant Reservations version is <= 2.6.7.Check Version:
wp plugin list --name='Five Star Restaurant Reservations' --field=versionVerify Fix Applied:
Confirm plugin version is 2.6.8 or higher in WordPress admin panel.📡 Detection & Monitoring
Log Indicators:
- Unusual GET/POST requests with script tags in parameters
- Requests to plugin-specific endpoints with encoded payloads
Network Indicators:
- HTTP requests containing <script>, javascript:, or encoded XSS payloads in query strings
SIEM Query:
source="web_logs" AND (uri="*restaurant-reservations*" AND (query="*<script>*" OR query="*javascript:*"))🔗 References
- https://patchstack.com/database/vulnerability/restaurant-reservations/wordpress-five-star-restaurant-reservations-plugin-2-6-7-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/restaurant-reservations/wordpress-five-star-restaurant-reservations-plugin-2-6-7-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
