Primary

Context

RestroPress WordPress Plugin Authentication Bypass Vulnerability via Forged JWT Tokens

Vulnerability

A vulnerability allowing authentication bypass has been identified in the RestroPress – Online Food Ordering System plugin for WordPress, affecting versions 3.0.0 to 3.1.9.2. The issue arises because the plugin exposes user private tokens and API data through the /wp-json/wp/v2/users REST API endpoint. This exposure enables unauthenticated attackers to forge JSON Web Tokens (JWT) for other users, including administrators, and authenticate as them.

Impact

Exploitation of this vulnerability allows unauthenticated users to bypass authentication mechanisms and gain unauthorized access to user accounts, potentially including administrative privileges.

Remediation

No known patch is available. Users are advised to review the vulnerability details and consider uninstalling the affected plugin.

Added: Oct 3, 2025, 12:26 PM

Updated: Oct 3, 2025, 12:26 PM

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

5.0

exploitability

7.6

remediation

0.0

relevance

0.6

threat

0.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

5.0

exploitability

7.6

remediation

0.0

relevance

0.6

threat

0.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

RestroPress WordPress Plugin Authentication Bypass Vulnerability via Forged JWT Tokens

Vulnerability

Impact

Remediation

Affected Products

RestroPress

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating