Lucene search
+L

94 matches found

attackerkb
attackerkb
added 6 days ago7 views

CVE-2026-11818

The WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.0.14. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possibl...

5.4CVSS5.9AI score0.00251EPSS
Exploits0References11
cvelist
cvelist
added 6 days ago32 views

CVE-2026-11818 WPCafe <= 3.0.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification via REST API

The WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.0.14. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possibl...

5.4CVSS0.00251EPSS
Exploits0References10
patchstack
patchstack
added 2026/07/09 2:47 p.m.6 views

WordPress WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin <= 3.0.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Modification vulnerability discovered by Sushi Com Abacate in WordPress Plugin WPCafe versions = 3.0.14...

5.4CVSS5.9AI score0.00251EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2026/06/26 3:16 p.m.7 views

CVE-2026-57622

Subscriber Broken Access Control in WPCafe = 3.0.14 versions...

4.3CVSS0.00259EPSS
Exploits0References1
cve
cve
added 2026/06/26 2:53 p.m.15 views

CVE-2026-57622

CVE-2026-57622 affects the WordPress WPCafe plugin, versions

4.3CVSS5.8AI score0.00259EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/26 2:53 p.m.7 views

CVE-2026-57622

Subscriber Broken Access Control in WPCafe = 3.0.14 versions...

4.3CVSS5.8AI score0.00259EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/26 2:53 p.m.34 views

CVE-2026-57622 WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability

Subscriber Broken Access Control in WPCafe = 3.0.14 versions...

4.3CVSS0.00259EPSS
Exploits0References1
patchstack
patchstack
added 2026/06/25 9:59 a.m.8 views

WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by L4m in WordPress Plugin WPCafe versions = 3.0.14...

4.3CVSS5.8AI score0.00259EPSS
Exploits0Affected Software1
cvelist
cvelist
added 2026/03/25 4:14 p.m.29 views

CVE-2026-27071 WordPress WPCafe plugin <= 3.0.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Arraytics WPCafe wp-cafe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCafe: from n/a through = 3.0.7...

9.1CVSS0.00302EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/03/25 4:14 p.m.2 views

CVE-2026-27071 WordPress WPCafe plugin <= 3.0.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Arraytics WPCafe wp-cafe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCafe: from n/a through = 3.0.7...

5.8AI score0.00302EPSS
Exploits0References1
cve
cve
added 2026/03/25 4:14 p.m.12 views

CVE-2026-27071

CVE-2026-27071 is a Missing Authorization / Broken Access Control vulnerability in the WordPress plugin WPCafe (wp-cafe) by Arraytics, affecting versions up to 3.0.7. The issue enables exploitation of incorrectly configured access control. CVSS v3.1 base score 9.1 (critical); vector: NETWORK, PR:...

9.1CVSS5.8AI score0.00302EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/03/25 12:0 a.m.8 views

WordPress plugin WPCafe 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. The WordPre...

9.1CVSS5.8AI score0.00302EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/03/25 12:0 a.m.5 views

PT-2026-27972

Name of the Vulnerable Software and Affected Versions Arraytics WPCafe versions n/a through 3.0.7 Description An authorization issue exists in Arraytics WPCafe wp-cafe due to incorrectly configured access control security levels. This allows for exploitation of the system. Recommendations Update...

9.1CVSS5.9AI score0.00302EPSS
Exploits0References3
patchstack
patchstack
added 2026/03/12 10:30 a.m.8 views

WordPress WPCafe plugin <= 3.0.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin WPCafe versions = 3.0.7...

9.1CVSS5.8AI score0.00302EPSS
Exploits0Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-51900

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.0049EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-46653

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00593EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-17580

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.00436EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-8348

Malicious code in bioql PyPI...

7.5CVSS9AI score0.01EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-40062

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00525EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-46649

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00321EPSS
Exploits0References5
Rows per page
Query Builder