cleantalk
Vulnerabilities and Security Researches

WP Food ordering and Restaurant Menu, CVE-2025-31040

CVE, Research URL

CVE-2025-31040

Home page URL

Security reports for WP Food ordering and Restaurant Menu

Application

WP Food ordering and Restaurant Menu

Published on
Apr 11, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in NotFound WP Food ordering and Restaurant Menu allows PHP Local File Inclusion. This issue affects WP Food ordering and Restaurant Menu: from n/a through 1.1.
Affected versions
Min -, max 1.1.
Status
vulnerable
Previous vulnerability researches
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2024-2017) , Jul 22, 2024
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2025-30841) , Apr 04, 2025
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2022-0601) , Jun 07, 2024
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2022-29420) , Jun 07, 2024
Countdown, Coming Soon, Maintenance – Countdown & Clock (CVE-2022-29423) , Jun 07, 2024
New vulnerability
Wireless Butler (CVE-2025-26997) , Apr 15, 2025
WooCommerce Loyal Customers (CVE-2025-32544) , Apr 15, 2025
WP Delete User Accounts (CVE-2025-26906) , Apr 15, 2025
Coming Soon, Maintenance Mode & Under Construction Page Builder by Site Mode (CVE-2025-26894) , Apr 15, 2025
Real Testimonials (CVE-2025-22269) , Apr 15, 2025