WordPress Plugin Travel Management is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin Travel Management version 1.5 is vulnerable; prior versions may also be affected.
Update to plugin version 1.7 or latest
WordPress Plugin MStore API Security Bypass (3.1.9)
WordPress Plugin WooCommerce Checkout For Digital Goods Cross-Site Request Forgery (2.2)
WordPress Plugin WP Mobile Menu-The Mobile-Friendly Responsive Menu Cross-Site Scripting (220.127.116.11)
Drupal Core Security Bypass (8.0.0 - 9.1.15)