CVE-2025-39352 – ThemeGoods Grand Restaurant WordPress Missing Authorization Vulnerability

May 19, 2025

CVE ID : CVE-2025-39352

Published : May 19, 2025, 8:15 p.m. | 2 hours, 33 minutes ago

Description : Missing Authorization vulnerability in ThemeGoods Grand Restaurant WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

Severity: 8.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39355 – FAT Services Booking SQL Injection

Next Article CVE-2025-39365 – Rocket Apps wProject Cross-site Scripting

Highlights

CVE-2025-54077 – WeGIA Reflected Cross-Site Scripting (XSS) Vulnerability

July 18, 2025

CVE ID : CVE-2025-54077

Published : July 18, 2025, 4:15 p.m. | 1 hour, 3 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in versions prior to 3.4.6 in the `personalizacao.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `err` parameter. Version 3.4.6 fixes the issue.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Ways Node.js Development Boosts AI & Real-Time Data (2025-2026 Edition)

Looking to Outsource React.js Development? Here’s What Top Agencies Are Doing Right

Beyond The Hype: What AI Can Really Do For Product Design

BrowserStack launches Chrome extension that bundles 10+ manual web testing tools

How much RAM does your Linux PC really need in 2025?

Have solar at home? Supercharge that investment with this other crucial component

I replaced my MacBook charger with this compact wall unit – and wish I’d done it sooner

5 reasons to switch to an immutable Linux distro today – and which to try first

Sentry Adds Logs Support for Laravel Apps

Sentry Adds Logs Support for Laravel Apps

Efficient Context Management with Laravel’s Remember Functions

Laravel Devtoolbox: Your Swiss Army Knife Artisan CLI

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

We gave OpenAI’s open-source AI a kid’s test — here’s what happened

With GTA 6, next-gen exclusives, and a console comeback on the horizon, Xbox risks sitting on the sidelines — here’s why

CVE-2025-39352 – ThemeGoods Grand Restaurant WordPress Missing Authorization Vulnerability

Workday Staff Fall to Social Engineering; Hackers Access Third-Party CRM Platform

Get Ready for the Black Hat USA 2025 CISO Podcast Series from The Cyber Express and Suraksha Catalyst

8 Free Career Development Courses From LinkedIn – Offer Ends May 7

New EDDIESTEALER Malware Bypasses Chrome’s App-Bound Encryption to Steal Browser Data

CVE-2025-4632 – Samsung MagicINFO 9 Server Path Traversal Write Arbitrary File Vulnerability

Distribution Release: Edubuntu 25.04

CVE-2025-54077 – WeGIA Reflected Cross-Site Scripting (XSS) Vulnerability

CodeSOD: Gridding My Teeth

CVE-2025-30408 – Acronis Cyber Protect Cloud Agent Windows Privilege Escalation

A cross-platform Markdown note-taking application

CVE-2025-39352 – ThemeGoods Grand Restaurant WordPress Missing Authorization Vulnerability

Related Posts