CVE-2025-39348 – ThemeGoods Grand Restaurant WordPress Object Injection Vulnerability

May 19, 2025

CVE ID : CVE-2025-39348

Published : May 19, 2025, 8:15 p.m. | 3 hours, 59 minutes ago

Description : Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Restaurant WordPress allows Object Injection.This issue affects Grand Restaurant WordPress: from n/a through 7.0.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39349 – CiyaShop Object Injection Vulnerability

Next Article CVE-2025-32928 – ThemeGoods Altair Object Injection Vulnerability

Highlights

CVE-2025-5713 – SoluçõesCoop iSoluçõesWEB Flow Handler Cross-Site Scripting Vulnerability

June 5, 2025

CVE ID : CVE-2025-5713

Published : June 6, 2025, 3:15 a.m. | 29 minutes ago

Description : A vulnerability was found in SoluçõesCoop iSoluçõesWEB up to 20250519 and classified as problematic. Affected by this issue is some unknown functionality of the file /fluxos-dashboard of the component Flow Handler. The manipulation of the argument Descrição da solicitação leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Just days after joining Game Pass, the Xbox PC edition of Call of Duty: WW2 is taken offline for “an issue”

Xbox layoffs and game cuts wreak havoc on talented developers and the company’s future portfolio — Weekend discussion 💬

Microsoft plans to revamp Recall in Windows 11 with these new features

This 4K OLED monitor has stereo speakers that follow you — but it’s missing something “imPORTant”

Flaget – new small 5kB CLI argument parser

Flaget – new small 5kB CLI argument parser

The dog days of JavaScript summer

Databricks Lakebase – Database Branching in Action

Just days after joining Game Pass, the Xbox PC edition of Call of Duty: WW2 is taken offline for “an issue”

Just days after joining Game Pass, the Xbox PC edition of Call of Duty: WW2 is taken offline for “an issue”

Xbox layoffs and game cuts wreak havoc on talented developers and the company’s future portfolio — Weekend discussion 💬

Microsoft plans to revamp Recall in Windows 11 with these new features

CVE-2025-39348 – ThemeGoods Grand Restaurant WordPress Object Injection Vulnerability

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

ShellCheck is a shell script static analysis tool

Microsoft Extends Windows 10 Security Updates for One Year with New Enrollment Options

This free Steam ‘game’ is being played more than Stellar Blade and Elden Ring Nightreign — even though it’s just a cat

OpenAI Introduces Four Key Updates to Its AI Agent Framework

CVE-2025-5713 – SoluçõesCoop iSoluçõesWEB Flow Handler Cross-Site Scripting Vulnerability

React vs Angular: Which Developer Should You Hire in 2025?

Google says easy email encryption is on the way – for some users

CVE-2025-52979 – Apache HTTP Server Cross-Site Request Forgery

CVE-2025-39348 – ThemeGoods Grand Restaurant WordPress Object Injection Vulnerability

Related Posts