Chimpstudio Foodbakery vulnerabilities
2 known vulnerabilities affecting chimpstudio/foodbakery.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-24389P3MEDIUMCVSS 6.1PoC≥ 2.2, < 2.22021-07-06
CVE-2021-24389 [MEDIUM] CWE-79 CVE-2021-24389: The WP Foodbakery WordPress plugin before 2.2, used in the FoodBakery WordPress theme before 2.2 did
The WP Foodbakery WordPress plugin before 2.2, used in the FoodBakery WordPress theme before 2.2 did not properly sanitize the foodbakery_radius parameter before outputting it back in the response, leading to an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability.
nvd
CVE-2025-32927P3CRITICALCVSS 9.8≤ 3.32025-05-19
CVE-2025-32927 [CRITICAL] CWE-502 CVE-2025-32927: Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery wp-foodbakery allows Objec
Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery wp-foodbakery allows Object Injection.This issue affects FoodBakery: from n/a through <= 3.3.
nvd