cleantalk
Vulnerabilities and Security Researches

WP Travel – Best Travel Booking WordPress Plugin, Tour Management Engine, 1bf3008a7996a1f0c45510d33cb7fba66437e59f

CVE, Research URL

1bf3008a7996a1f0c45510d33cb7fba66437e59f

Home page URL

Security reports for WP Travel – Best Travel Booking WordPress Plugin, Tour Management Engine

Application

WP Travel – Best Travel Booking WordPress Plugin, Tour Management Engine

Published on
Mar 01, 2021
Research Description
WP Travel &#8211; Ultimate Travel Booking System, Tour Management Engine [wp-travel] < 4.4.7 WordPress WP Travel plugin <= 4.4.6 - Cross-Site Request Forgery (CSRF) vulnerability Cross-Site Request Forgery (CSRF) vulnerability found by NintechNet in WordPress WP Travel plugin (versions <= 4.4.6).
Affected versions
max 4.4.7.
Status
vulnerable
Previous vulnerability researches
WP Travel Gutenberg Blocks (CVE-2025-62063) , Nov 11, 2025
WP Travel Gutenberg Blocks (CVE-2025-53207) , Jul 05, 2025
WP Travel Gutenberg Blocks (CVE-2024-43284) , Aug 20, 2024
WP Travel Gutenberg Blocks (CVE-2024-47627) , Oct 03, 2024
WP Travel &#8211; Best Travel Booking WordPress Plugin, Tour Management Engine (CVE-2024-44039) , Sep 28, 2024
New vulnerability
OceanWP (CVE-2025-8944) , May 14, 2026
130+ Widgets | Best Addons For Elementor &#8211; FREE (CVE-2026-45214) , May 14, 2026
Court Reservation &#8211; Manage Your Court Bookings Online (CVE-2026-1250) , May 14, 2026
Ninja Forms Views &#8211; Display &amp; Edit Ninja Forms Submissions on your site frontend (CVE-2026-42741) , May 14, 2026
WP Travel &#8211; Best Travel Booking WordPress Plugin, Tour Management Engine (CVE-2026-45218) , May 14, 2026