8 matches found
CVE-2026-56059 WordPress Travel Booking theme <= 2.2.5 - Arbitrary File Upload vulnerability
Subscriber Arbitrary File Upload in Travel Booking = 2.2.5 versions...
CVE-2026-56059
The CVE-2026-56059 entry concerns the WordPress Travel Booking theme version up to 2.2.5, which is affected by an arbitrary file upload vulnerability in Subscriber context. The linked sources (NVD/CVE records) confirm the affected product and version range and classify the severity as critical wi...
CVE-2026-32486
CVE-2026-32486 affects the WordPress Travel Booking theme (Travel Booking, plugin-like component) with versions up to and including 1.3.9. The vulnerability is described as a Missing Authorization / Broken Access Control issue caused by incorrectly configured access control security levels in the...
CVE-2026-32486 WordPress Travel Booking theme <= 1.3.9 - Broken Access Control vulnerability
Missing Authorization vulnerability in wptravelengine Travel Booking travel-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travel Booking: from n/a through = 1.3.9...
EUVD-2024-34358
Malicious code in bioql PyPI...
PT-2024-17349 · WordPress · The Travel Booking Wordpress Theme
Name of the Vulnerable Software and Affected Versions: Travel Booking WordPress Theme versions up to, and including, 3.1.6 Description: The issue allows authenticated attackers with Subscriber-level access and above to modify data without permission due to a missing capability check on several...
PT-2024-17343 · WordPress · The Travel Booking Wordpress Theme
Name of the Vulnerable Software and Affected Versions: The Travel Booking WordPress Theme versions up to, and including, 3.1.6 Description: The issue is a blind time-based SQL Injection vulnerability. It affects the order id parameter due to insufficient escaping on the user-supplied parameter an...
WordPress Travel Booking Theme <= 2.7 - Reflected & Stored Cross-Site Scripting XSS vulnerability
Reflected & Stored Cross-Site Scripting XSS vulnerability found by QUIXSS in WordPress Traveler - Travel Booking Theme versions = 2.7.1. Solution 11 June 2019 - we were unable to find a fixed version...