Cooked – Recipe Management

Vulnerabilities 15Slug cookedLatest version 1.14.0WordPress.org →

Minimum safe version

1.11.4

Update to 1.11.4 or later to address 15 fixable vulnerabilities

Latest available1.14.0 ✓

N/A

2025-12-31< 1.11.4

CVE-2025-62989

CVE Wordfence

Medium 5.3

2025-12-24< 1.11.4

CVE-2025-68586

CVE Wordfence

Medium 5.4

2024-08-06< 1.8.1

WordPress Cooked Plugin <= 1.8.0 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE Wordfence

N/A

2024-07-18< 1.8.0

WordPress Cooked Plugin <= 1.7.15.4 is vulnerable to Content Injection

Patchstack

N/A

2024-07-18< 1.8.0

WordPress Cooked Plugin <= 1.7.15.4 is vulnerable to Cross Site Request Forgery (CSRF)

Patchstack

High 8.8

2024-07-17< 1.8.0

CVE-2024-39681

CVE Wordfence

Medium 5.4

2024-07-17< 1.8.0

CVE-2024-39682

CVE Wordfence

High 8.8

2024-07-17< 1.8.0

CVE-2024-39678

CVE Wordfence

High 8.8

2024-07-17< 1.8.0

CVE-2024-39679

CVE Wordfence

High 8.8

2024-07-17< 1.8.0

CVE-2024-39680

CVE Wordfence

Medium 6.5

2023-10-02< 1.7.15.1

CVE-2023-44477

CVE Patchstack Wordfence WPScan

N/A

2023-07-18< 1.1.13

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

WPScan CVE

N/A

2021-06-21< 1.7.9.1

Cooked <= 1.7.9 - Reflected Cross-Site Scripting

Wordfence

N/A

< 1.7.9.1

Cooked < 1.7.9.1- Unauthenticated Reflected Cross-Site Scripting (XSS)

WPScan

Medium 6.1

2021-04-22< 1.7.5.6

CVE-2021-24233

CVE Wordfence