Grand Tour

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-39485 CRITICAL This Week

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour | Travel Agency WordPress allows Object Injection.5.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress Deserialization Grand Tour PHP

NVD

CVSS 3.1

9.8

EPSS

0.4%

CVE-2025-39485

EPSS 0% CVSS 9.8

CRITICAL This Week

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour | Travel Agency WordPress allows Object Injection.5.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress Deserialization Grand Tour +1

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy