2 matches found
WordPress Tabs Plugin <= 1.8.0 XSS Vulnerability
The WordPress plugin Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...
CVE-2018-5312
The CVE concerns the WordPress tabs-responsive plugin (version 1.8.0) with a reflected/stored XSS via the post_title parameter to wp-admin/post.php. The root cause is unvalidated/post_title handling in the tabs-responsive plugin, enabling script execution that can lead to user cookies exposure. D...