MidnightBSD

Advisories for travel_management_project

CVE-2019-15773 MEDIUM

The nd-travel plugin before 1.7 for WordPress has a nopriv_ AJAX action that allows modification of the siteurl setting.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,

Products Affected

Vendor Product Version
travel_management_project travel_management *