CVE-2024-5431

HIGH

WPCafe < 2.2.25 - Authenticated Local File Inclusion via reservation_extra_field Shortcode Parameter

Title source: llm

Description

The WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.2.25 via the reservation_extra_field shortcode parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include remote files on the server, potentially resulting in code execution

References (2)

Core 2

Core References

Product

https://plugins.trac.wordpress.org/browser/wp-cafe/tags/2.2.25/core/shortcodes/views/reservation/reservation-form-template.php#L178

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/5c5e7ed1-7eb8-4ce7-9dd6-0f7937b6f671?source=cve

Scores

CVSS v3 8.8

EPSS 0.0059

EPSS Percentile 43.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-98

Status published

Products (2)

arraytics/WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System < 2.2.25

themewinter/wpcafe < 2.2.26

Published Jun 25, 2024

Tracked Since Feb 18, 2026