3 matches found
CVE-2024-11926
creationtimestamp| type| source ---|---|--- 2024-12-18 13:41:54+00:00| seen| https://t.me/cvedetector/13196...
CVE-2024-11926 Traveler <= 3.1.6 - Missing Authorization in Several AJAX Actions
The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'stPartnerCreateServiceRental', 'stdeleteorderitem', 'stpartnerapprovebooking', 'saveorderitem', and 'userDenyEachInfo' functions in all versions up t...
CVE-2024-11926 Traveler <= 3.1.6 - Missing Authorization in Several AJAX Actions
The Travel Booking WordPress Theme theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'stPartnerCreateServiceRental', 'stdeleteorderitem', 'stpartnerapprovebooking', 'saveorderitem', and 'userDenyEachInfo' functions in all versions up t...