A vulnerability was found in WP Travel Kit Travelscape 1.0.3 on WordPress. It has been declared as critical . This impacts an unknown function. Such manipulation leads to unrestricted upload. This vulnerability is listed as CVE-2024-58349 . The attack may be performed from remote. In addition, an exploit is available.