EUVD-2025-35371

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks.This issue affects WP Travel Gutenberg Blocks: from n/a through = 3.9.2...

CVE-2025-62063

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks.This issue affects WP Travel Gutenberg Blocks: from n/a through = 3.9.2...

CVE-2025-62063

CVE-2025-62063 is a cross-site scripting vulnerability in the WordPress plugin WP Travel Gutenberg Blocks (affected: versions ≤ 3.9.2). The issue stems from improper input neutralization during web page generation, enabling XSS. Public references in Wordfence Intelligence and PatchStack confirm t...

CVE-2025-53207

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks allows PHP Local File Inclusion.This issue affects WP Travel Gutenberg Blocks: from n/a through = 3.9.0...

CVE-2025-53207

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks allows PHP Local File Inclusion.This issue affects WP Travel Gutenberg Blocks: from n/a through = 3.9.0...

CVE-2025-53207

CVE-2025-53207 is a confirmed Local File Inclusion vulnerability in the WordPress plugin WP Travel Gutenberg Blocks (affected: versions up to 3.9.0). The root cause is improper control of the filename used in PHP include/require statements, enabling LFI and potentially local file exposure. CVSS v...

CVE-2025-53207 WordPress WP Travel Gutenberg Blocks plugin <= 3.9.0 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks allows PHP Local File Inclusion.This issue affects WP Travel Gutenberg Blocks: from n/a through = 3.9.0...

PT-2025-33972 · WordPress · Wp Travel Gutenberg Blocks

Name of the Vulnerable Software and Affected Versions: WP Travel WP Travel Gutenberg Blocks versions through 3.9.0 Description: WP Travel WP Travel Gutenberg Blocks is susceptible to a PHP Local File Inclusion due to an Improper Control of Filename for Include/Require Statement. This allows for t...

PT-2024-32684 · WordPress · Wp Travel Gutenberg Blocks

Name of the Vulnerable Software and Affected Versions: WP Travel Gutenberg Blocks versions 3.6.0 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in WP Travel Gutenberg...

WordPress plugin WP Travel Gutenberg Blocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

CVE-2024-43284

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WP Travel WP Travel Gutenberg Blocks allows Stored XSS.This issue affects WP Travel Gutenberg Blocks: from n/a through 3.5.1...

WordPress WP Travel Gutenberg Blocks plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin WP Travel Gutenberg Blocks versions = 3.5.1...