Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Nicheaddons Subscribe
Filtered by product Restaurant \& Cafe Addon For Elementor
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-10780 1 Nicheaddons 1 Restaurant \& Cafe Addon For Elementor 2025-07-14 N/A 4.3 MEDIUM
The Restaurant & Cafe Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.9 via the 'narestaurant_elementor_template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from private or draft posts created by Elementor that they should not have access to.
CVE-2024-54316 1 Nicheaddons 1 Restaurant \& Cafe Addon For Elementor 2025-04-11 N/A 6.5 MEDIUM
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows DOM-Based XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through 1.5.8.
CVE-2023-47826 1 Nicheaddons 1 Restaurant \& Cafe Addon For Elementor 2025-04-07 N/A 6.5 MEDIUM
Missing Authorization vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through 1.5.3.
CVE-2024-44032 1 Nicheaddons 1 Restaurant \& Cafe Addon For Elementor 2025-03-24 N/A 6.5 MEDIUM
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows Stored XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through 1.5.5.
CVE-2024-51581 1 Nicheaddons 1 Restaurant \& Cafe Addon For Elementor 2024-11-13 N/A 6.5 MEDIUM
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows Stored XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through 1.5.6.