CVE-2025-26873

Deserialization of Untrusted Data vulnerability in shinetheme Traveler traveler.This issue affects Traveler: from n/a through < 3.2.1.

CVSS

No CVSS.

References

Link	Resource
https://patchstack.com/database/Wordpress/Theme/traveler/vulnerability/wordpress-traveler-theme-3-1-8-php-object-injection-vulnerability?_s_id=cve

Configurations

No configuration.

History

01 Apr 2026, 17:18

Type	Values Removed	Values Added
Summary	~~(en) Deserialization of Untrusted Data vulnerability in Shine theme Traveler.This issue affects Traveler: from n/a before 3.2.1.~~	(en) Deserialization of Untrusted Data vulnerability in shinetheme Traveler traveler.This issue affects Traveler: from n/a through < 3.2.1.
CVSS	v2 : ~~unknown~~ v3 : ~~9.0~~	v2 : unknown v3 : unknown
References	~~{'url': 'https://patchstack.com/database/wordpress/theme/traveler/vulnerability/wordpress-traveler-theme-3-1-8-php-object-injection-vulnerability?_s_id=cve', 'source': 'audit@patchstack.com'}~~	() https://patchstack.com/database/Wordpress/Theme/traveler/vulnerability/wordpress-traveler-theme-3-1-8-php-object-injection-vulnerability?_s_id=cve -

09 Jun 2025, 09:15

Type	Values Removed	Values Added
Summary	~~(en) Deserialization of Untrusted Data vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8.~~	(en) Deserialization of Untrusted Data vulnerability in Shine theme Traveler.This issue affects Traveler: from n/a before 3.2.1.

28 Mar 2025, 18:11

Type	Values Removed	Values Added
Summary		(es) Vulnerabilidad de deserialización de datos no confiables en Shinetheme Traveler. Este problema afecta a Traveler: desde n/a hasta 3.1.8.

27 Mar 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-27 22:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-26873

Mitre link : CVE-2025-26873

CVE.ORG link : CVE-2025-26873

JSON object : View

Products Affected

No product.

CWE

CWE-502

Deserialization of Untrusted Data