CVE-2025-64372 | shinetheme Traveler Plugin up to 3.2.6 on WordPress cross site scripting

Inserito da Angelo Barbosa | Dic 18, 2025 | CVE

A vulnerability, which was classified as problematic, was found in shinetheme Traveler Plugin up to 3.2.6 on WordPress. Affected by this issue is some unknown functionality. Executing manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2025-64372. It is possible to launch the attack remotely. No exploit is available.

You should upgrade the affected component.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

CVE-2025-64372 | shinetheme Traveler Plugin up to 3.2.6 on WordPress cross site scripting

Post correlati

CVE-2025-9139 | Scada-LTS 2.7.8.1 WatchListDwr.init.dwr information disclosure

CVE-2024-4469 | WP STAGING Backup Plugin up to 3.5.0 on WordPress server-side request forgery

CVE-2023-22522 | Atlassian Confluence Data Center/Confluence Server prior 7.19.17/8.4.5/8.5.4/8.6.2/8.7.1 Template injection

CVE-2025-62761 | BasePress Knowledge Base Documentation & Wiki Plugin up to 2.17.0.1 on WordPress cross site scripting