Vulnerabilities and security researches forwp-travel-blocks wp-travel-blocks

Aug 20, 2024

CVE, Research URL: CVE-2024-43284
Home page URL: Security reports for WP Travel Gutenberg Blocks
Application: WP Travel Gutenberg Blocks
Date: Aug 19, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Travel WP Travel Gutenberg Blocks allows Stored XSS.This issue affects WP Travel Gutenberg Blocks: from n/a through 3.5.1.
Affected versions: max 3.6.0.
Status: vulnerable

Oct 03, 2024

CVE, Research URL: CVE-2024-47627
Home page URL: Security reports for WP Travel Gutenberg Blocks
Application: WP Travel Gutenberg Blocks
Date: Oct 05, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Travel WP Travel Gutenberg Blocks allows Stored XSS.This issue affects WP Travel Gutenberg Blocks: from n/a through 3.6.0.
Affected versions: max 3.7.0.
Status: vulnerable

Jul 05, 2025

CVE, Research URL: CVE-2025-53207
Home page URL: Security reports for WP Travel Gutenberg Blocks
Application: WP Travel Gutenberg Blocks
Date: Aug 20, 2025
Research Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Travel WP Travel Gutenberg Blocks allows PHP Local File Inclusion. This issue affects WP Travel Gutenberg Blocks: from n/a through 3.9.0.
Affected versions: max 3.9.1.
Status: vulnerable

Nov 11, 2025

CVE, Research URL: CVE-2025-62063
Home page URL: Security reports for WP Travel Gutenberg Blocks
Application: WP Travel Gutenberg Blocks
Date: Oct 22, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks.This issue affects WP Travel Gutenberg Blocks: from n/a through <= 3.9.2.
Affected versions: max 3.9.2.
Status: vulnerable