See Recorded Future’s Threat Intelligence Solutions in Action

See our Threat Intelligence Solutions in Action

Reduce risk and mitigate cyber attacks, no matter your IT & security stack, maturity journey, or industry

Book a free demo

View Solutions to Reduce Risk

See Recorded Future’s Intelligence in Action

Reduce operational risk through timely, precise, and actionable intelligence.

Book a free demo

Intelligence Cloud Overview

View Services & Support Overview

View Research Overview

CVE-2025-24661

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 3, 2025

CWE ID 502

Summary

CVE-2025-24661 is a Deserialization of Untrusted Data vulnerability affecting the MagePeople Team Taxi Booking Manager for WooCommerce. This issue permits Object Injection, making it a significant security concern. The vulnerability can be exploited in versions of the software from n/a through 1.1.8. An attacker can send malicious data to the affected system, leading to unintended execution of code with potentially harmful consequences. The MagePeople Team strongly encourages users to update their installation of Taxi Booking Manager for WooCommerce to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database