Tourfic@* Security Vulnerabilities and Issues — Tourfic@* CVE List

Lucene search

ThemeficTourfic*

5 matches found

CVE•added 2024/03/19 2:15 p.m.•58 views

CVE-2024-29135

Unrestricted Upload of File with Dangerous Type vulnerability in Tourfic.This issue affects Tourfic: from n/a through 2.11.15.

9.9CVSS9.6AI score0.0035EPSS

CVE•added 2024/03/19 2:15 p.m.•54 views

CVE-2024-29137

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Tourfic allows Reflected XSS.This issue affects Tourfic: from n/a through 2.11.7.

7.1CVSS7.1AI score0.0007EPSS

CVE•added 2024/03/19 2:15 p.m.•53 views

CVE-2024-29134

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Tourfic allows Stored XSS.This issue affects Tourfic: from n/a through 2.11.8.

6.5CVSS6.7AI score0.00062EPSS

CVE•added 2024/03/19 2:15 p.m.•47 views

CVE-2024-29136

Deserialization of Untrusted Data vulnerability in Themefic Tourfic.This issue affects Tourfic: from n/a through 2.11.17.

8.8CVSS8.5AI score0.00288EPSS

CVE•added 2024/12/25 4:15 a.m.•44 views

CVE-2024-12032

The Tourfic – Ultimate Hotel Booking, Travel Booking & Apartment Booking WordPress Plugin | WooCommerce Booking plugin for WordPress is vulnerable to SQL Injection via the 'enquiry_id' parameter of the 'tf_enquiry_reply_email_callback' function in all versions up to, and including, 2.15.3 due to in...

6.5CVSS6.5AI score0.00095EPSS