Shinecommerce Traveler — known CVE vulnerabilities
Every CVE whose affected-product data names Shinecommerce Traveler, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-1771 — CVSS 9.8 (critical): The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.8 via the…
CVE-2025-1773 — CVSS 6.1 (medium): The Traveler theme for WordPress is vulnerable to Reflected Cross-Site Scripting via multiple parameters in all versions up to, and…