cleantalk
Vulnerabilities and Security Researches

WPPizza – A Restaurant Plugin, CVE-2025-57894

CVE, Research URL

CVE-2025-57894

Home page URL

Security reports for WPPizza – A Restaurant Plugin

Application

WPPizza – A Restaurant Plugin

Published on
Aug 22, 2025
Research Description
Missing Authorization vulnerability in ollybach WPPizza allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPPizza: from n/a through 3.19.8.
Affected versions
Min -, max 3.19.8.1.
Status
vulnerable
Previous vulnerability researches
WP Crontrol (CVE-2024-28850) , Jun 07, 2024
WP Crontrol (ee606200d06d026e615be1bbc222571330834d0d) , Jun 07, 2024
WP Crontrol (CVE-2025-8678) , Aug 22, 2025
New vulnerability
Popup for CF7 with Sweet Alert (CVE-2025-48363) , Aug 23, 2025
WPPizza – A Restaurant Plugin (CVE-2025-57894) , Aug 23, 2025
ShortcodeHub – MultiPurpose Shortcode Builder (CVE-2025-7957) , Aug 23, 2025
Simple Login Log (CVE-2025-49438) , Aug 23, 2025
SensorPress (CVE-2025-49409) , Aug 23, 2025