Wp Travel@* Security Vulnerabilities and Issues — Wp Travel@* CVE List

Lucene search

WensolutionsWp Travel*

2 matches found

CVE•added 2023/07/01 5:15 a.m.•44 views

CVE-2021-4389

The WP Travel plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.4.6. This is due to missing or incorrect nonce validation on the save_meta_data() function. This makes it possible for unauthenticated attackers to save metadata for travel posts via a...

4.3CVSS4.2AI score0.00093EPSS

CVE•added 2024/12/06 2:15 p.m.•42 views

CVE-2024-53813

Missing Authorization vulnerability in WP Travel WP Travel allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Travel: from n/a through 9.6.0.

6.5CVSS6.5AI score0.00055EPSS