94 matches found
CVE-2026-11818
The WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.0.14. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possibl...
CVE-2026-11818 WPCafe <= 3.0.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification via REST API
The WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.0.14. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possibl...
WordPress WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System plugin <= 3.0.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Modification vulnerability
Missing Authorization to Authenticated Subscriber+ Arbitrary Modification vulnerability discovered by Sushi Com Abacate in WordPress Plugin WPCafe versions = 3.0.14...
CVE-2026-57622
Subscriber Broken Access Control in WPCafe = 3.0.14 versions...
CVE-2026-57622
CVE-2026-57622 affects the WordPress WPCafe plugin, versions
CVE-2026-57622
Subscriber Broken Access Control in WPCafe = 3.0.14 versions...
CVE-2026-57622 WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability
Subscriber Broken Access Control in WPCafe = 3.0.14 versions...
WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by L4m in WordPress Plugin WPCafe versions = 3.0.14...
CVE-2026-27071 WordPress WPCafe plugin <= 3.0.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Arraytics WPCafe wp-cafe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCafe: from n/a through = 3.0.7...
CVE-2026-27071 WordPress WPCafe plugin <= 3.0.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in Arraytics WPCafe wp-cafe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCafe: from n/a through = 3.0.7...
CVE-2026-27071
CVE-2026-27071 is a Missing Authorization / Broken Access Control vulnerability in the WordPress plugin WPCafe (wp-cafe) by Arraytics, affecting versions up to 3.0.7. The issue enables exploitation of incorrectly configured access control. CVSS v3.1 base score 9.1 (critical); vector: NETWORK, PR:...
WordPress plugin WPCafe 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. The WordPre...
PT-2026-27972
Name of the Vulnerable Software and Affected Versions Arraytics WPCafe versions n/a through 3.0.7 Description An authorization issue exists in Arraytics WPCafe wp-cafe due to incorrectly configured access control security levels. This allows for exploitation of the system. Recommendations Update...
WordPress WPCafe plugin <= 3.0.7 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by daroo in WordPress Plugin WPCafe versions = 3.0.7...
EUVD-2023-51900
Malicious code in bioql PyPI...
EUVD-2024-46653
Malicious code in bioql PyPI...
EUVD-2024-36722
Malicious code in bioql PyPI...
EUVD-2024-17580
Malicious code in bioql PyPI...
EUVD-2025-8348
Malicious code in bioql PyPI...
EUVD-2024-40062
Malicious code in bioql PyPI...