Authorization Bypass Vulnerability in Five Star Restaurant Reservations by Rustaurius
CVE-2025-68044

8.6HIGH

Key Information:

Vendor: WordPress
Status: Five Star Restaurant Reservations
Vendor: CVE Published:; 5 January 2026

What is CVE-2025-68044?

The Five Star Restaurant Reservations plugin by Rustaurius contains an authorization bypass vulnerability that allows attackers to exploit improperly configured access control security levels. This issue can result in unauthorized access to sensitive information or functions within the application, affecting versions from n/a through 2.7.8. It's crucial for users of this plugin to take immediate action to mitigate any potential security risks.

Affected Version(s)

Five Star Restaurant Reservations 0 <= 2.7.4

References

https://patchstack.com/database/Wordpress/Plugin/restaura...

vdb-entry

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 5, 2026
Vulnerability Reserved
Dec 15, 2025

Credit

daroo | Patchstack Bug Bounty Program

CVE-2025-68044 Data

JSON