ByteOS Network

Travelicious

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

1Vulnerabilities found

CVE-2025-67997

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-9.8||CRITICAL

EPSS-0.05% / 16.72%

7 Day CHG+0.03%

Published-20 Feb, 2026 | 15:46

Updated-24 Feb, 2026 | 22:16

WordPress Travelicious theme < 1.6.7 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in BoldThemes Travelicious travelicious allows Object Injection.This issue affects Travelicious: from n/a through < 1.6.7.

Vendor-BoldThemes

Product-Travelicious

CWE ID-CWE-502

Deserialization of Untrusted Data