cleantalk
Vulnerabilities and Security Researches

WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table Reservation, CVE-2026-27071

CVE, Research URL

CVE-2026-27071

Home page URL

Security reports for WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table Reservation

Application

WPCafe – Restaurant Menu, Online Ordering for WooCommerce, Pickup / Delivery and Table Reservation

Published on
Mar 25, 2026
Research Description
Missing Authorization vulnerability in Arraytics WPCafe wp-cafe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCafe: from n/a through <= 3.0.7.
Affected versions
max 3.0.7.
Status
vulnerable
Previous vulnerability researches
FooGallery Captions (CVE-2025-23889) , Jan 25, 2025
New vulnerability
Classified Listing – Classified ads &amp; Business Directory Plugin (CVE-2026-23546) , Mar 30, 2026
Remoji &#8211; Post/Comment Reaction and Enhancement (CVE-2026-25452) , Mar 30, 2026
Spa and Salon (CVE-2026-25374) , Mar 30, 2026
Poll | Vote | Contest &#8211; Best Poll Plugin for WordPress (CVE-2026-27044) , Mar 30, 2026
Podlove Web Player (CVE-2026-24385) , Mar 30, 2026