Threat Entry Updated 2026-01-22

CVE-2025-39352 - Grand Restaurant Plugin

Missing Authorization vulnerability in ThemeGoods Grand Restaurant WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

PLUGIN Grand Restaurant

CVE-2025-39352

HIGH CVSS 8.2 2025-05-19

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-05-29

CVE-2025-39348 - Grand Restaurant Plugin

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Restaurant WordPress allows Object Injection.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

PLUGIN Grand Restaurant

CVE-2025-39348

CRITICAL CVSS 9.8 2025-05-19

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-06-09

CVE-2025-32926 - Grand Restaurant Plugin

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThemeGoods Grand Restaurant WordPress allows Path Traversal.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

PLUGIN Grand Restaurant

CVE-2025-32926

CRITICAL CVSS 9.8 2025-05-19

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-22

CVE-2025-39353 - Grand Restaurant Plugin

Missing Authorization vulnerability in ThemeGoods Grand Restaurant WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

PLUGIN Grand Restaurant

CVE-2025-39353

MEDIUM CVSS 5.3 2025-05-19

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-22

CVE-2025-39351 - Grand Restaurant Plugin

Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods Grand Restaurant WordPress allows Cross Site Request Forgery.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

PLUGIN Grand Restaurant

CVE-2025-39351

MEDIUM CVSS 4.3 2025-05-19

Risk Score

Open Full Technical Breakdown