Vulnerabilities and security researches forwp-travel-blocks wp-travel-blocks
Direction: ascendingAug 20, 2024
WP Travel Gutenberg Blocks # CVE-2024-43284
- CVE, Research URL
- Home page URL
- Application
- Date
- Aug 19, 2024
- Research Description
- Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Travel WP Travel Gutenberg Blocks allows Stored XSS.This issue affects WP Travel Gutenberg Blocks: from n/a through 3.5.1.
- Affected versions
-
max 3.6.0.
- Status
-
vulnerable
Oct 03, 2024
WP Travel Gutenberg Blocks # CVE-2024-47627
- CVE, Research URL
- Home page URL
- Application
- Date
- Oct 05, 2024
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks allows Stored XSS.This issue affects WP Travel Gutenberg Blocks: from n/a through <= 3.6.0.
- Affected versions
-
max 3.7.0.
- Status
-
vulnerable
Jul 05, 2025
WP Travel Gutenberg Blocks # CVE-2025-53207
- CVE, Research URL
- Home page URL
- Application
- Date
- Aug 20, 2025
- Research Description
- Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks allows PHP Local File Inclusion.This issue affects WP Travel Gutenberg Blocks: from n/a through <= 3.9.0.
- Affected versions
-
max 3.9.1.
- Status
-
vulnerable
Nov 11, 2025
WP Travel Gutenberg Blocks # CVE-2025-62063
- CVE, Research URL
- Home page URL
- Application
- Date
- Oct 22, 2025
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Travel WP Travel Gutenberg Blocks wp-travel-blocks.This issue affects WP Travel Gutenberg Blocks: from n/a through <= 3.9.2.
- Affected versions
-
max 3.9.3.
- Status
-
vulnerable
Jun 19, 2026
WP Travel Gutenberg Blocks # CVE-2026-54808
- CVE, Research URL
- Home page URL
- Application
- Date
- Jun 17, 2026
- Research Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Travel WP Travel Gutenberg Blocks allows Blind SQL Injection. This issue affects WP Travel Gutenberg Blocks: from n/a through 3.9.4.
- Affected versions
-
max 3.9.5.
- Status
-
vulnerable