Headline
CVE-2022-29923: Quick Restaurant Reservations
Authenticated (admin or higher user role) Reflected Cross-Site Scripting (XSS) vulnerability in ThingsForRestaurants Quick Restaurant Reservations plugin <= 1.4.1 at WordPress.
- Details
- Reviews
- Installation
- Support
- Development
Quick Restaurant Reservations is the easiest way to manage your restaurant bookings. Confirm / Reject reservations and send notifications to your customers. Manage several schedules, dates and time intervals.
Quick Restaurant Reservations Features
The plugin uses default WordPress functionality. Creates custom post types for Restaurants, Bookings and Clients.
- Unlimited bookings
- Bookings per restaurant
- Pending, Confirm, Reject, Cancel status.
- Notify customers about their booking status via email.
- Manual confirmation.
- Define min / max party
- Early / Late bookings
- Date format
- Custom message after form submitted
- Custom redirect after form submitted
- Unlimited schedules
- Schedule status open / close
- Define week days and time interval for each schedule
- Customize email notifications (admin, pending, confirmed, rejected, update)
- Clients list
- Form fields: date, party, time, name, email, phone, message
ADD-ONS Features
- Unlimited restaurants
- Each restaurant has its own page and booking form
- Automatic confirmations
- Set max capacity based on number of seats
- Set max capacity based on tables
- Limit automatic confirmation to max party
- Limit automatic confirmation until X seats reached
- Customize logo of email notifications
- Monthly calendar view
- Daily calendar view
- Unlimited form custom fields
Make sure to review our ADD-ONS for Quick Restaurant Reservations page for more detailed information.
How to use
Add the shortcode of the restaurant form in any existing post or page:
[qrr_form id="123"]
Translations
- Unzip the plugin and upload it to your site’s wp-content/plugins/ folder.
- Activate Quick Restaurant Reservations trough the “plugins” area in your WordPress dashboard
- A new menu item called “Rest. Bookings” will appear in your dashboard navigation.
- Go there and create a new restaurant.
- Define schedules for the restaurant.
- Copy and paste the shortcode for the bookings form in another page content.
How do I create a booking form?
Create a new restaurant.
Define schedules for the restaurant.
Insert the shortcode on any post or page.
Purchased the Capacity add on and it didn’t work. We had a maximum set and we could just keep adding bookings endlessly. It didn’t close off the numbers. Contacted support, no reply after a month. Put in another support ticket and asked for a refund. Same thing, no refund and no reply. We have to delete the whole plugin from our site because the capacity won’t work.
I tested others plugins, this is very simple and complete. Other popular plugins don’t work as well as this one.
This plugin is easy to implement and to customize.
I had a few challenges in a Wordpress multi-site environment, with a chain of 5 restaurants, each offering different arrangements on different times, different opening hours etcetera. I tried quite a few other plugins, but this one is by far the best! Support was great, even after more than several (beginner) questions, each was answered quickly and politely and the few issues that arose from this difficult setup were dealt with swiftly… Truly a 5-star review!
I love this plugin. It is exactly what I was looking for. It allows you change tags and personalize notifications. However, I couldn’t edit the button text. Is it possible to do that?
Read all 8 reviews
“Quick Restaurant Reservations” is open source software. The following people have contributed to this plugin.
Contributors
- Alejandro
1.5.2
- Bulk action Cancel fixed
1.5.1
- Fixed issue bulk updating bookings
1.5.0
- Fixed issue email not saving format
- Fixes issue in clients list layout
1.4.8
- Fixed booking create status dropdown
- Added new column for tables assigned
1.4.7
- Fixed booking Action Selector dropdown
1.4.6
- Fixed problem with emails layout
1.4.5
- Fixed issue restaurant settings not saved
1.4.4
- Fixed some bugs
1.3.6
- Added time to Closed schedules
- Can be closed full day or specific time
1.3.5
- Fix issue with min booking duration
- Fix issue with link to cancel booking
- Added new column ‘Duration’
- Integration with add-on ‘Capacity’ to export CSV
1.3.3
- Added NL translation thanks to Bjron
1.3.2
- Fixed issue for deleting trash old booking
- Added booking column ID
1.3.1
- Small issue with the front reservation ajax action
1.3.0
- The admin table bookings has a default view for Today/Future bookings
- New filter for Today or Future reservations at the admin table bookings list
- New filter ‘qrr_admin_booking_column_date’ for changing the admin column Date format
- Fixed issue calendar flickering at the front-end
1.2.8
- Fixed issue with i18n date
1.2.7
- Fixed small issues with front-form.php template
- Added new filters to remove all other metaboxes from CPTs
- filter: qrr_restaurant_remove_all_other_metaboxes (default false)
- filter: qrr_client_remove_all_other_metaboxes (default false)
- filter: qrr_booking_remove_all_other_metaboxes (default false)
1.2.6
- Fixed date translation inside the emails sent
1.2.5
- Fixed action links from email sent to administrator (confirm, reject, calcel booking)
- Added early booking new options (1 and 2 years in advance)
1.2.0
- Solved bug when sending emails from admin bookings panel
1.1.5
- Hours format: 24h / 12H
- Small bugs fixed
- Default admin email set if field is empty
- Form date picker with >40 available translations
1.0.5
- Bookings list filtering by date and restaurant.
- Bookings list ordered by date.
1.0.0
- Plugin released.