ByteOS Network

Travelpayouts

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

1Vulnerabilities found

CVE-2025-68042

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.03% / 8.15%

7 Day CHG+0.01%

Published-20 Feb, 2026 | 15:46

Updated-25 Feb, 2026 | 20:22

WordPress Travelpayouts plugin <= 1.2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Travelpayouts Travelpayouts travelpayouts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travelpayouts: from n/a through <= 1.2.1.

Vendor-Travelpayouts

Product-Travelpayouts

CWE ID-CWE-862

Missing Authorization