Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/02/04 7:28 p.m.5 views

CVE-2026-24940

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelfic Toolkit: from n/a through = 1.3.3...

4.3CVSS5.3AI score0.00185EPSS
Exploits0References1
NVD
NVD
added 2026/02/03 3:16 p.m.15 views

CVE-2026-24940

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelfic Toolkit: from n/a through = 1.3.3...

4.3CVSS0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/03 2:8 p.m.2 views

CVE-2026-24940 WordPress Travelfic Toolkit plugin <= 1.3.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelfic Toolkit: from n/a through = 1.3.3...

4.3CVSS5.3AI score0.00185EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 2:8 p.m.9 views

CVE-2026-24940

CVE-2026-24940 concerns the WordPress Travelfic Toolkit plugin (travelfic-toolkit) with versions up to and including 1.3.3. The issue is described as Missing Authorization due to incorrectly configured access control security levels, effectively a broken access control vulnerability. The Red Hat,...

4.3CVSS5.3AI score0.00185EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 2:8 p.m.16 views

EUVD-2026-5188

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelfic Toolkit: from n/a through = 1.3.3...

4.3CVSS5.3AI score0.00185EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 2:8 p.m.22 views

CVE-2026-24940 WordPress Travelfic Toolkit plugin <= 1.3.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelfic Toolkit: from n/a through = 1.3.3...

4.3CVSS0.00185EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 2:8 p.m.3 views

CVE-2026-24940

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelfic Toolkit: from n/a through = 1.3.3...

5.3AI score0.00185EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.5 views

WordPress plugin Travelfic Toolkit 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.8AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-6217

Name of the Vulnerable Software and Affected Versions Themefic Travelfic Toolkit versions through 1.3.3 Description An authorization issue exists in Themefic Travelfic Toolkit’s travelfic-toolkit, allowing exploitation of incorrectly configured access control security levels. Recommendations Upda...

4.3CVSS5.4AI score0.00185EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/26 8:58 a.m.5 views

WordPress Travelfic Toolkit plugin <= 1.3.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Que Thanh Tuan in WordPress Plugin Travelfic Toolkit versions = 1.3.3...

4.3CVSS5.3AI score0.00185EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2025-11298

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00254EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/25 11:23 p.m.6 views

CVE-2025-39585

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Stored XSS.This issue affects Travelfic Toolkit: from n/a through = 1.2.1...

6.5CVSS7.2AI score0.00254EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/16 1:56 p.m.19 views

WordPress Travelfic Toolkit plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Travelfic Toolkit versions = 1.2.1...

6.5CVSS7.1AI score0.00254EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/16 1:15 p.m.9 views

CVE-2025-39585

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Stored XSS.This issue affects Travelfic Toolkit: from n/a through = 1.2.1...

6.5CVSS0.00254EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/16 12:44 p.m.10 views

CVE-2025-39585 WordPress Travelfic Toolkit plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows Stored XSS.This issue affects Travelfic Toolkit: from n/a through = 1.2.1...

6.5CVSS0.00254EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/16 12:44 p.m.4 views

CVE-2025-39585 WordPress Travelfic Toolkit <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Travelfic Toolkit allows Stored XSS. This issue affects Travelfic Toolkit: from n/a through 1.2.1...

6.5CVSS6.9AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2025/04/16 12:44 p.m.49 views

CVE-2025-39585

CVE-2025-39585 is a Stored XSS in Themefic Travelfic Toolkit (Travelfic Toolkit)

6.5CVSS7.2AI score0.00254EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.3 views

WordPress plugin Travelfic Toolkit 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.7AI score0.00254EPSS
Exploits0References1
Rows per page
Query Builder