Approved changes feed: RSS · Atom

cpe:2.3:a:chimpstudio:foodbakery:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorChimpstudio (c3314495-e456-52cc-9712-bd8543d1a332)
ProductFoodbakery (3a8ef14c-7200-5659-83cf-46393675a383)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-32927 vulnerable 2026-06-08 07:19:01.187304 WordPress FoodBakery plugin <= 3.3 - PHP Object Injection vulnerability
CRITICAL (9.8)
Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery wp-foodbakery allows Object Injection.This issue affects FoodBakery: from n/a through <= 3.3.
Published: 2025-05-19T19:54:47.090Z
Updated: 2026-04-28T16:12:28.914Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-24389 vulnerable 2026-06-08 05:30:04.293003 FoodBakery < 2.2 - Reflected Cross-Site Scripting (XSS)
The WP Foodbakery WordPress plugin before 2.2, used in the FoodBakery WordPress theme before 2.2 did not properly sanitize the foodbakery_radius parameter before outputting it back in the response, leading to an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability.
Published: 2021-07-06T11:03:30.000Z
Updated: 2024-08-03T19:28:23.807Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.