Blog | WPFore

RestroPress – Online Food Ordering System Vulnerability (Medium) – …

Attack Vectors CVE-2025-31877 is a Medium-severity authorization issue (CVSS 4.3) affecting the RestroPress – Online Food Ordering System WordPress plugin (slug: restropress) in versions up to and including 3.2.8. The vulnerability can be exploited remotely over the...

RestroPress – Online Food Ordering System Vulnerability (Medium) – …

by Ivan Sorkin

Attack Vectors RestroPress – Online Food Ordering System (WordPress plugin slug: restropress) is affected by a Medium-severity reflected cross-site scripting (XSS) issue (CVSS 6.1, CVE-2025-32553) in versions up to and including 3.2.8.6. This type of attack is...

Kraken.io Image Optimizer Vulnerability (Medium) – CVE-2023-0619

by Ivan Sorkin

Attack Vectors Kraken.io Image Optimizer (slug: kraken-image-optimizer) has a Medium-severity vulnerability (CVSS 6.5, CVE-2023-0619) that can be triggered over the network by a logged-in user. The key exposure is that any authenticated account with Subscriber-level...

Vantage Vulnerability (Medium) – CVE-2026-5070

by Ivan Sorkin

Attack Vectors CVE-2026-5070 is a Medium severity vulnerability (CVSS 6.4) affecting the Vantage WordPress theme (slug: vantage) in versions up to and including 1.20.32. It enables authenticated users with Contributor access or higher to inject malicious script into a...

WP Docs Vulnerability (Medium) – CVE-2026-3878

by Ivan Sorkin

Attack Vectors CVE-2026-3878 is a Medium severity Stored Cross-Site Scripting (XSS) vulnerability (CVSS 6.4) affecting the WP Docs WordPress plugin (wp-docs) in versions 2.2.9 and below. The issue is exploitable by an authenticated user with Subscriber-level access or...

WP Shortcodes Plugin — Shortcodes Ultimate Vulnerability (Medium) -…

by Ivan Sorkin

Attack Vectors The WP Shortcodes Plugin — Shortcodes Ultimate (slug: shortcodes-ultimate) vulnerability (CVE-2026-3885, Medium severity, CVSS 6.4) is exploitable by an authenticated WordPress user with Contributor-level access or higher. The attacker can abuse the...

Our Blog

RestroPress – Online Food Ordering System Vulnerability (Medium) – …

RestroPress – Online Food Ordering System Vulnerability (Medium) – …

Kraken.io Image Optimizer Vulnerability (Medium) – CVE-2023-0619

Vantage Vulnerability (Medium) – CVE-2026-5070

WP Docs Vulnerability (Medium) – CVE-2026-3878

WP Shortcodes Plugin — Shortcodes Ultimate Vulnerability (Medium) -…

Success!

Location

Follow Us

Subscription

Success!