3 matches found
CVE-2026-39565
Missing Authorization vulnerability in magepeopleteam WpTravelly tour-booking-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpTravelly: from n/a through = 2.1.7...
CVE-2026-39565
CVE-2026-39565 concerns a Missing Authorization vulnerability in the WordPress plugin Travelly (WPTravelly) Tour & Travel Booking Manager for WooCommerce, affecting up to version 2.1.7. Root cause is Incorrectly Configured Access Control Security Levels leading to unauthorized actions. Base CVSS ...
CVE-2026-39565 WordPress WpTravelly plugin <= 2.1.7 - Broken Access Control vulnerability
Missing Authorization vulnerability in magepeopleteam WpTravelly tour-booking-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpTravelly: from n/a through = 2.1.7...