CVE-2025-67917 | shinetheme Traveler Plugin up to 3.2.6 on WordPress authorization

January 8, 2026 Yanac

A vulnerability was found in shinetheme Traveler Plugin up to 3.2.6 on WordPress. It has been declared as critical. Affected by this issue is some unknown functionality. Executing a manipulation can lead to missing authorization.

This vulnerability is handled as CVE-2025-67917. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-67919 | WofficeIO Woffice Core Plugin up to 5.4.30 on WordPress authorization
CVE-2025-67913 | Aruba.it Dev Aruba HiSpeed Cache Plugin up to 3.0.3 on WordPress authorization