WP-Safety

Reserving – Online Food Ordering & Reservation System Security & Risk Analysis

wordpress.org/plugins/reserving

Reserving is designed for restaurants and food delivery services, helping manage online reservations, table bookings, and efficient delivery operation …

0 active installs v1.2 PHP 7.4+ WP 6.0+ Updated Oct 14, 2024
food-deliveryfood-orderingfood-pickupreservationrestaurant-menu
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Reserving – Online Food Ordering & Reservation System Safe to Use in 2026?

Generally Safe

Score 92/100

Reserving – Online Food Ordering & Reservation System has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "reserving" v1.2 plugin exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices regarding SQL query sanitization and output escaping, with a very high percentage of both being handled correctly. The absence of known CVEs and vulnerability history is also a strong indicator of a relatively secure past. However, a significant concern arises from the large attack surface, particularly the 24 unprotected AJAX handlers. This presents a considerable risk, as these entry points could be exploited by unauthenticated users to trigger unintended actions within the plugin.

The taint analysis, while not revealing critical or high-severity vulnerabilities in terms of unsanitized paths, did flag four flows with unsanitized paths. While the severity is not explicitly stated as critical or high, any unsanitized path is a potential gateway for vulnerabilities. The presence of only 3 nonce checks across the entire plugin, especially in conjunction with numerous unprotected AJAX handlers, further exacerbates the risk. The bundled DataTables library is also a point to consider, as outdated versions of bundled libraries can introduce vulnerabilities. Overall, while the plugin scores well on core sanitization and escaping, the high number of unprotected AJAX endpoints and insufficient nonce checks represent a substantial security weakness that requires immediate attention.

Key Concerns

  • Unprotected AJAX handlers
  • Flows with unsanitized paths
  • Insufficient nonce checks
  • Bundled library (DataTables)
Vulnerabilities
None known

Reserving – Online Food Ordering & Reservation System Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Reserving – Online Food Ordering & Reservation System Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
5 prepared
Unescaped Output
67
1273 escaped
Nonce Checks
3
Capability Checks
7
File Operations
1
External Requests
0
Bundled Libraries
1

Bundled Libraries

DataTables

SQL Query Safety

83% prepared6 total queries

Output Escaping

95% escaped1340 total outputs
Data Flows
4 unsanitized

Data Flow Analysis

6 flows4 with unsanitized paths
quick_view_product_details (app\extensions\frontend\product\Product_Grid.php:180)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
24 unprotected

Reserving – Online Food Ordering & Reservation System Attack Surface

Entry Points31
Unprotected24

AJAX Handlers 26

authwp_ajax_reserving_dashboard_report_card_sortingapp\backend\pages\Dashboard.php:14
authwp_ajax_view_order_detailsapp\backend\pages\Orders.php:29
authwp_ajax_print_order_pdfapp\backend\pages\Orders.php:31
noprivwp_ajax_print_order_pdfapp\backend\pages\Orders.php:32
authwp_ajax_assign_delivery_manapp\backend\pages\Orders.php:34
authwp_ajax_update_order_statusapp\backend\pages\Orders.php:36
authwp_ajax_load_single_branch_time_slotsapp\extensions\frontend\ajax\Ajax.php:16
noprivwp_ajax_load_single_branch_time_slotsapp\extensions\frontend\ajax\Ajax.php:17
authwp_ajax_load_multi_branch_time_slotsapp\extensions\frontend\ajax\Ajax.php:19
noprivwp_ajax_load_multi_branch_time_slotsapp\extensions\frontend\ajax\Ajax.php:20
authwp_ajax_load_available_tablesapp\extensions\frontend\ajax\Ajax.php:22
noprivwp_ajax_load_available_tablesapp\extensions\frontend\ajax\Ajax.php:23
authwp_ajax_print_order_pdfapp\extensions\frontend\ajax\Ajax.php:25
noprivwp_ajax_print_order_pdfapp\extensions\frontend\ajax\Ajax.php:26
authwp_ajax_reserving_cart_tip_updateapp\extensions\frontend\ajax\Ajax.php:29
noprivwp_ajax_reserving_cart_tip_updateapp\extensions\frontend\ajax\Ajax.php:30
authwp_ajax_reserving_cart_tip_removeapp\extensions\frontend\ajax\Ajax.php:32
noprivwp_ajax_reserving_cart_tip_removeapp\extensions\frontend\ajax\Ajax.php:33
authwp_ajax_reserving_cart_latest_contentapp\extensions\frontend\ajax\Ajax.php:35
noprivwp_ajax_reserving_cart_latest_contentapp\extensions\frontend\ajax\Ajax.php:36
authwp_ajax_reserving_quick_view_product_add_to_cartapp\extensions\frontend\ajax\Ajax.php:39
noprivwp_ajax_reserving_quick_view_product_add_to_cartapp\extensions\frontend\ajax\Ajax.php:40
authwp_ajax_reserving_cart_cookie_updateapp\extensions\frontend\cart\Cart_Update.php:17
noprivwp_ajax_reserving_cart_cookie_updateapp\extensions\frontend\cart\Cart_Update.php:18
authwp_ajax_quick_view_product_detailsapp\extensions\frontend\product\Product_Grid.php:30
noprivwp_ajax_quick_view_product_detailsapp\extensions\frontend\product\Product_Grid.php:31

Shortcodes 5

[reserving_availability_checker] app\extensions\frontend\shortcodes\Availability_Checker.php:15
[reserving_delivery_info] app\extensions\frontend\shortcodes\Delivery_Info.php:38
[reserving_frontend_dashboard] app\extensions\frontend\shortcodes\Frontend_Dashboard.php:35
[reserving_single_product_extra_items] app\extensions\frontend\shortcodes\Product_Single.php:13
[reserving_single_product_price] app\extensions\frontend\shortcodes\Product_Single.php:14
WordPress Hooks 57
actionadmin_enqueue_scriptsapp\backend\Assets.php:9
actioninitapp\backend\cpt\Branches.php:24
actioninitapp\backend\cpt\Delivery_Area.php:21
actioninitapp\backend\cpt\Tables.php:22
actionadmin_menuapp\backend\Menu.php:15
actioninitapp\backend\Menu.php:16
actionadmin_enqueue_scriptsapp\backend\pages\Dashboard.php:13
actioninitapp\backend\pages\Orders.php:38
actioninitapp\backend\pages\Orders.php:39
actionwp_enqueue_scriptsapp\backend\pages\Orders.php:40
filterwc_order_statusesapp\backend\pages\Orders.php:371
actionadmin_enqueue_scriptsapp\backend\settings\Settings_Controller.php:13
actioninitapp\backend\settings\Settings_Controller.php:14
actionelementor/widgets/registerapp\extensions\elementor\Elementor.php:11
actionelementor/elements/categories_registeredapp\extensions\elementor\Elementor.php:13
actioninitapp\extensions\frontend\blocks\block.php:31
actionenqueue_block_editor_assetsapp\extensions\frontend\blocks\block.php:53
actionwoocommerce_after_cart_item_nameapp\extensions\frontend\cart\Cart_Modify.php:18
filterwoocommerce_add_cart_item_dataapp\extensions\frontend\cart\Cart_Modify.php:19
actionwoocommerce_before_calculate_totalsapp\extensions\frontend\cart\Cart_Modify.php:20
actionwp_enqueue_scriptsapp\extensions\frontend\cart\Cart_Update.php:20
filterwoocommerce_update_cart_action_cart_updatedapp\extensions\frontend\cart\Cart_Update.php:21
actionwoocommerce_cart_calculate_feesapp\extensions\frontend\cart\Cart_Update.php:28
filterwoocommerce_checkout_cart_item_quantityapp\extensions\frontend\checkout\Checkout_Modify.php:39
filterwoocommerce_cart_item_nameapp\extensions\frontend\checkout\Checkout_Modify.php:40
actionwoocommerce_thankyouapp\extensions\frontend\order\Order_Modify.php:34
actionwoocommerce_view_orderapp\extensions\frontend\order\Order_Modify.php:35
actionwoocommerce_thankyouapp\extensions\frontend\order\Order_Modify.php:36
actionwoocommerce_checkout_create_order_line_itemapp\extensions\frontend\order\Order_Modify.php:37
actionwoocommerce_checkout_update_order_metaapp\extensions\frontend\order\Order_Modify.php:38
actionget_headerapp\extensions\frontend\product\Product_Grid.php:19
actionget_footerapp\extensions\frontend\product\Product_Grid.php:20
filtershow_admin_barapp\extensions\frontend\product\Product_Grid.php:21
filterwoocommerce_loop_add_to_cart_linkapp\extensions\frontend\product\Product_Grid.php:25
actionwoocommerce_before_shop_loopapp\extensions\frontend\product\Product_Grid.php:26
actionwoocommerce_after_single_productapp\extensions\frontend\product\Product_Grid.php:27
actionwoocommerce_after_cartapp\extensions\frontend\product\Product_Grid.php:28
actionwp_footerapp\extensions\frontend\product\Product_Grid.php:29
actionwoocommerce_before_add_to_cart_quantityapp\extensions\frontend\product\Product_Single.php:14
filterwoocommerce_quantity_input_classesapp\extensions\frontend\product\Product_Single.php:15
actionwoocommerce_product_options_pricingapp\extensions\frontend\product\Product_Single.php:16
actionwoocommerce_process_product_metaapp\extensions\frontend\product\Product_Single.php:17
actionadmin_enqueue_scriptsapp\extensions\frontend\product\Product_Single.php:18
actionpre_get_postsapp\extensions\frontend\product\Product_Single.php:19
filtershow_admin_barapp\extensions\frontend\shortcodes\Frontend_Dashboard.php:28
filterlogin_redirectapp\extensions\frontend\shortcodes\Frontend_Dashboard.php:29
actiontemplate_redirectapp\extensions\frontend\shortcodes\Frontend_Dashboard.php:30
filterlogin_form_bottomapp\extensions\frontend\shortcodes\Frontend_Dashboard.php:32
actionwp_login_failedapp\extensions\frontend\shortcodes\Frontend_Dashboard.php:33
actioninitapp\extensions\frontend\shortcodes\Frontend_Dashboard.php:34
actionadmin_noticesapp\serviceProviders\App\Notice.php:18
actionadmin_menupackages\Options\Fields\Admin.php:13
actionadmin_initpackages\Options\Fields\Settings.php:33
actionadmin_noticespackages\Options\Fields\Settings.php:34
actionadd_meta_boxespackages\Options\Post_Meta_Settings.php:29
actionsave_postpackages\Options\Post_Meta_Settings.php:30
actionplugins_loadedreserving.php:55
Maintenance & Trust

Reserving – Online Food Ordering & Reservation System Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedOct 14, 2024
PHP min version7.4
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Reserving – Online Food Ordering & Reservation System Alternatives

Food Store – Online Food Delivery & Pickup

Food Store – Online Food Delivery & Pickup

food-store

B
78

Food Store is complete online food ordering platform with all your favourite WooCommerce functionalities.

1K 1 unpatched
Restaurant Menu – Food Ordering System – Table Reservation

Restaurant Menu – Food Ordering System – Table Reservation

menu-ordering-reservations

A
96

Create a restaurant menu and start taking food orders online, with no commissions or costs. Table reservations are also available for free.

8K 7 CVEs
Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin

Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin

orderable

B
75

Take your restaurant/food business online with the online ordering system plugin for WordPress, Orderable.

6K 1 unpatched
Food Menu – Restaurant Menu & Online Ordering for WooCommerce

Food Menu – Restaurant Menu & Online Ordering for WooCommerce

tlp-food-menu

A
99

A Simple Food & Restaurant Menu Display Plugin for Restaurant, Cafes, Fast Food, Coffee House with WooCommerce Online Ordering.

3K 1 CVE
AForms Eats

AForms Eats

aforms-eats

A
91

An order form builder for restaurants. You can create comfortable order forms and sell your food online.

400 1 CVE
Developer Profile

Reserving – Online Food Ordering & Reservation System Developer Profile

quomodosoft

3 plugins · 3K total installs

84
trust score
Avg Security Score
86/100
Avg Patch Time
9 days
View full developer profile
Detection Fingerprints

How We Detect Reserving – Online Food Ordering & Reservation System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/reserving/assets/public/css/app.css/wp-content/plugins/reserving/assets/public/js/app.js/wp-content/plugins/reserving/assets/public/js/menu.js/wp-content/plugins/reserving/assets/public/js/checkout.js/wp-content/plugins/reserving/assets/public/js/single-product.js/wp-content/plugins/reserving/assets/public/js/menu-category.js/wp-content/plugins/reserving/assets/public/js/cart.js/wp-content/plugins/reserving/assets/public/js/search.js+3 more
Script Paths
/wp-content/plugins/reserving/assets/public/js/app.js/wp-content/plugins/reserving/assets/public/js/menu.js/wp-content/plugins/reserving/assets/public/js/checkout.js/wp-content/plugins/reserving/assets/public/js/single-product.js/wp-content/plugins/reserving/assets/public/js/menu-category.js/wp-content/plugins/reserving/assets/public/js/cart.js+4 more
Version Parameters
reserving/assets/public/css/app.css?ver=reserving/assets/public/js/app.js?ver=reserving/assets/public/js/menu.js?ver=reserving/assets/public/js/checkout.js?ver=reserving/assets/public/js/single-product.js?ver=reserving/assets/public/js/menu-category.js?ver=reserving/assets/public/js/cart.js?ver=reserving/assets/public/js/search.js?ver=reserving/assets/public/js/cart-empty.js?ver=reserving/assets/public/js/single-category.js?ver=reserving/assets/public/js/reservation.js?ver=

HTML / DOM Fingerprints

CSS Classes
reserving-dashboard-card-sorted-element
HTML Comments
Now lets include the bootloader fileAll Core Function loaderUsed for securityUsed to help know where we am on the filesystem.
Data Attributes
data-reserving-cartdata-reserving-cart-qtydata-reserving-cart-singledata-reserving-cart-single-qty
JS Globals
reserving_obj
REST Endpoints
/wp-json/reserving/
FAQ

Frequently Asked Questions about Reserving – Online Food Ordering & Reservation System