PT-2025-5482 · Woocommerce · Taxi Booking Manager For Woocommerce

Mika

Published

2025-02-03

Updated

2025-05-19

CVE-2025-24661

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Taxi Booking Manager for WooCommerce versions 1.1.8 and earlier

Description The issue is related to Deserialization of Untrusted Data, which allows Object Injection. This can potentially be exploited by injecting malicious objects into the application.

Recommendations For versions 1.1.8 and earlier, update to a version that contains a fix for this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2025-24661

Affected Products

Taxi Booking Manager For Woocommerce

PT-2025-5482 · Woocommerce · Taxi Booking Manager For Woocommerce

CVE-2025-24661

Weakness Enumeration

Related Identifiers

Affected Products

References · 7