Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Object Injection.This issue affects Grand Restaurant: from n/a through <= 7.0.10.
Credits
João Pedro S Alcântara (Kinorth) | Patchstack Bug Bounty Program