All 7 CVE vulnerabilities found in Grand Restaurant, with AI-generated Chinese analysis, references, and POCs.
Vendor: ThemeGoods
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-23542 | WordPress Grand Restaurant theme <= 7.0.10 - PHP Object Injection vulnerability CWE-502 | 9.8 | Critical | 2026-02-19 |
| CVE-2025-67922 | WordPress Grand Restaurant theme < 7.0.9 - Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2026-01-08 |
| CVE-2025-32926 | WordPress Grand Restaurant WordPress theme <= 7.0 - Path Traversal to PHP Object Injection vulnerability CWE-22 | 9.8 | Critical | 2025-05-19 |
| CVE-2025-39348 | WordPress Grand Restaurant WordPress theme <= 7.0 - PHP Object Injection vulnerability CWE-502 | 9.8 | Critical | 2025-05-19 |
| CVE-2025-39352 | WordPress Grand Restaurant WordPress theme <= 7.0 - Arbitrary Options Deletion vulnerability CWE-862 | 8.2 | High | 2025-05-19 |
| CVE-2025-39353 | WordPress Grand Restaurant WordPress theme <= 7.0 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2025-05-19 |
| CVE-2025-39351 | WordPress Grand Restaurant WordPress theme <= 7.0 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-05-19 |
All 7 known CVE vulnerabilities affecting Grand Restaurant with full Chinese analysis, references, and POCs where available.