Does Easy restaurant menu manager have any unpatched vulnerabilities?

No. All known vulnerabilities in Easy restaurant menu manager have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Easy restaurant menu manager compatible with WordPress 6.9.4?

According to WordPress.org data, Easy restaurant menu manager 2.0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Easy restaurant menu manager compatible with PHP 7.0.0+?

Easy restaurant menu manager requires PHP 7.0.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Easy restaurant menu manager updated?

Easy restaurant menu manager was last updated on Dec 1, 2025. Frequent updates are generally a positive security signal.

What is Easy restaurant menu manager's security score?

Easy restaurant menu manager has a WP-Safety security score of 97/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Easy restaurant menu manager Security & Risk Analysis

wordpress.org/plugins/easy-pdf-restaurant-menu-upload

Restaurant Menu Plugin to effortlessly manage restaurant menus. Delegate uploads: user solely for menu uploads.

200 active installs v2.0.3 PHP 7.0.0+ WP 4.0+ Updated Dec 1, 2025

food-menumenusrestaurantrestaurant-menu

A · Safe

CVEs total3

Unpatched0

Last CVEAug 12, 2025

Plugin page Download

Safety Verdict

Is Easy restaurant menu manager Safe to Use in 2026?

Generally Safe

Score 97/100

Easy restaurant menu manager has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Aug 12, 2025Updated 4mo ago

Risk Assessment

The "easy-pdf-restaurant-menu-upload" plugin exhibits a mixed security posture. While there are no critical or high-severity vulnerabilities in its history and the static analysis shows no dangerous functions or taint flows, there are several concerning aspects. The presence of one unprotected REST API route represents a direct entry point that could be exploited without proper authentication, posing a significant risk. Additionally, the complete lack of prepared statements for its SQL queries is a major red flag, as this significantly increases the risk of SQL injection vulnerabilities, especially if user-provided data is ever incorporated into these queries. The plugin's vulnerability history, while currently showing no unpatched CVEs, does reveal a pattern of medium-severity issues, specifically Cross-Site Request Forgery and Cross-Site Scripting. This history, coupled with the static analysis findings, suggests that while the plugin may have received attention, fundamental security practices like proper input sanitization and prepared SQL statements are not being consistently applied, which could lead to future exploitable vulnerabilities.

Key Concerns

REST API route without permission callback
SQL queries without prepared statements
Medium severity vulnerabilities in history (3 total)

Vulnerabilities

Easy restaurant menu manager Security Vulnerabilities

CVEs by Year

1 CVE in 2019

2019

2 CVEs in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

3 total CVEs

CVE-2025-8491medium · 4.3Cross-Site Request Forgery (CSRF)

Easy restaurant menu manager <= 2.0.2 - Cross-Site Request Forgery to Menu Upload

Aug 12, 2025 Patched in 2.0.3 (1d)

CVE-2025-6673medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Easy restaurant menu manager <= 2.0.1 - Authenticated (Contributot+) Stored Cross-Site Scripting via `nsc_eprm_menu_link` Shortcode

Jul 3, 2025 Patched in 2.0.2 (1d)

CVE-2019-15842medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Easy restaurant menu manager <= 1.1.2 - Cross-Site Scripting

Jun 29, 2019 Patched in 1.2 (1669d)

Code Analysis

Analyzed Mar 16, 2026

Easy restaurant menu manager Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

21 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared2 total queries

Output Escaping

70% escaped30 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

register_settings_nsc_eprm (class\class-admin-settings-nsc_eprm.php:95)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Easy restaurant menu manager Attack Surface

Entry Points3

Unprotected1

REST API Routes 1

GET/wp-json/easy-pdf-restaurant-menu/v1/menu-typesclass\class-api-nsc_eprm.php:10

Shortcodes 2

[nsc_eprm_menu_link] nsc_easy-pdf-restaurant-menu.php:62

[nsc_eprm_menu_file_url] nsc_easy-pdf-restaurant-menu.php:63

WordPress Hooks 15

actionadmin_initclass\class-admin-settings-nsc_eprm.php:43

actionadmin_menuclass\class-admin-settings-nsc_eprm.php:44

filterlogin_redirectclass\class_admin_easy_pdf_restaurant_menu.php:22

filterwoocommerce_login_redirectclass\class_admin_easy_pdf_restaurant_menu.php:23

actionadmin_noticesclass\class_admin_easy_pdf_restaurant_menu.php:202

actionadmin_noticesclass\class_admin_easy_pdf_restaurant_menu.php:205

actionplugins_loadednsc_easy-pdf-restaurant-menu.php:54

actionplugins_loadednsc_easy-pdf-restaurant-menu.php:59

actioninitnsc_easy-pdf-restaurant-menu.php:66

filterblock_categoriesnsc_easy-pdf-restaurant-menu.php:69

filterblock_categories_allnsc_easy-pdf-restaurant-menu.php:71

actionrest_api_initnsc_easy-pdf-restaurant-menu.php:75

actioninitnsc_easy-pdf-restaurant-menu.php:79

actionquery_varsnsc_easy-pdf-restaurant-menu.php:80

actiontemplate_redirectnsc_easy-pdf-restaurant-menu.php:81

Maintenance & Trust

Easy restaurant menu manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 1, 2025

PHP min version7.0.0

Downloads11K

Community Trust

Rating100/100

Number of ratings3

Active installs200

Alternatives

Easy restaurant menu manager Alternatives

Restaurant Menu – Food Ordering System – Table Reservation

menu-ordering-reservations

Create a restaurant menu and start taking food orders online, with no commissions or costs. Table reservations are also available for free.

8K 7 CVEs

Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin

orderable

Take your restaurant/food business online with the online ordering system plugin for WordPress, Orderable.

6K 1 unpatched

Food Menu – Restaurant Menu & Online Ordering for WooCommerce

tlp-food-menu

A Simple Food & Restaurant Menu Display Plugin for Restaurant, Cafes, Fast Food, Coffee House with WooCommerce Online Ordering.

3K 1 CVE

Restaurant Menu and Food Ordering

mp-restaurant-menu

Create and maintain modern online menus for almost any kind of restaurant. Sell food and beverages online. All in one plugin.

2K 4 CVEs

Great Restaurant Menu WP

best-restaurant-menu-by-pricelisto

The fastest and easiest way to create a professional-looking menu or price list for your restaurant or business.

1K 1 unpatched

Developer Profile

Easy restaurant menu manager Developer Profile

Nikel

5 plugins · 40K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

406 days

View full developer profile

Detection Fingerprints

How We Detect Easy restaurant menu manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/easy-pdf-restaurant-menu-upload/css/backend_style.css/wp-content/plugins/easy-pdf-restaurant-menu-upload/css/frontend_style.css/wp-content/plugins/easy-pdf-restaurant-menu-upload/js/backend_script.js/wp-content/plugins/easy-pdf-restaurant-menu-upload/js/frontend_script.js/wp-content/plugins/easy-pdf-restaurant-menu-upload/js/gutenberg-editor-blocks.js

Script Paths

/wp-content/plugins/easy-pdf-restaurant-menu-upload/js/backend_script.js/wp-content/plugins/easy-pdf-restaurant-menu-upload/js/frontend_script.js/wp-content/plugins/easy-pdf-restaurant-menu-upload/js/gutenberg-editor-blocks.js

Version Parameters

easy-pdf-restaurant-menu-upload/css/backend_style.css?ver=easy-pdf-restaurant-menu-upload/css/frontend_style.css?ver=easy-pdf-restaurant-menu-upload/js/backend_script.js?ver=easy-pdf-restaurant-menu-upload/js/frontend_script.js?ver=easy-pdf-restaurant-menu-upload/js/gutenberg-editor-blocks.js?ver=

HTML / DOM Fingerprints

CSS Classes

nsc_eprm_menu_link_wrappernsc_eprm_menu_list

Data Attributes

data-nsc_eprm_menu_type

JS Globals

nsc_eprm_gutenberg_blocks_data

REST Endpoints

/wp-json/easy-pdf-restaurant-menu/v1/menu-types

Shortcode Output

[nsc_eprm_menu_link][nsc_eprm_menu_file_url]

FAQ