cleantalk
Vulnerabilities and Security Researches

WP Travel Engine – Best Travel Booking WordPress Plugin, CVE-2026-49078

CVE, Research URL

CVE-2026-49078

Home page URL

Security reports for WP Travel Engine – Best Travel Booking WordPress Plugin

Application

WP Travel Engine – Best Travel Booking WordPress Plugin

Published on
-
Research Description
WP Travel Engine &#8211; Tour Booking Plugin &#8211; Tour Operator Software [wp-travel-engine] < 6.7.11 CVE-2026-49078
Affected versions
max 6.7.11.
Status
vulnerable
Previous vulnerability researches
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2026-25385) , Feb 26, 2026
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2024-13362) , May 02, 2026
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2025-32134) , Apr 06, 2025
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2023-5605) , Jun 07, 2024
URL Shortify &#8211; Simple, Powerful and Easy URL Shortener Plugin For WordPress (CVE-2021-24749) , Jun 07, 2024
New vulnerability
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-49764) , Jun 12, 2026
Upsell Order Bump Offer for WooCommerce – Increase Sales and AOV, Upsell &amp; Cross-sell Offers on Checkout Page (CVE-2026-49110) , Jun 12, 2026
Simple Link Directory (CVE-2026-53742) , Jun 12, 2026
Simple Link Directory (CVE-2026-53741) , Jun 12, 2026
Newsletters (CVE-2026-3018) , Jun 12, 2026