Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in WordPress Tour & Travel Booking Plugin for WooCommerce – WpTravelly 1.7.1

  • Severity: medium-risk
  • Status: Fixed
  • Publication: May 28, 2024

The WordPress Tour & Travel Booking Plugin for WooCommerce, known as WpTravelly, has a security issue. This issue allows people to change information without permission. It affects all versions up to 1.7.1. This means that people who are not logged in can make and share new posts about places. It is also at risk for cross-site request forgery (CSRF).

Detected in:

Travel Booking Manager – WPTravelly | Tour & Hotel Booking Solution For WooCommerce fixed vulnerable versions: >= * <= 1.7.1
WpTravelly – Tour & Travel Booking Manager for WooCommerce | Tour & Hotel Booking Solution fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.