Wp Tabs Security Vulnerabilities and Issues — Wp Tabs CVE List

Lucene search

ShapedpluginWp Tabs

5 matches found

CVE•added 2024/01/05 12:15 p.m.•63 views

CVE-2023-52124

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ShapedPlugin LLC WP Tabs – Responsive Tabs Plugin for WordPress allows Stored XSS.This issue affects WP Tabs – Responsive Tabs Plugin for WordPress: from n/a through 2.2.0.

6.5CVSS5.9AI score0.00077EPSS

CVE•added 2025/03/25 6:15 a.m.•52 views

CVE-2024-11503

The WP Tabs WordPress plugin before 2.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

6.1CVSS5.8AI score0.0004EPSS

CVE•added 2023/01/30 9:15 p.m.•50 views

CVE-2023-0071

The WP Tabs WordPress plugin before 2.1.17 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

5.4CVSS5.3AI score0.00144EPSS

CVE•added 2023/02/14 12:15 p.m.•49 views

CVE-2023-25065

Cross-Site Request Forgery (CSRF) vulnerability in ShapedPlugin WP Tabs – Responsive Tabs Plugin for WordPress plugin <= 2.1.14 versions.

8.8CVSS7.2AI score0.0009EPSS

CVE•added 2025/05/16 4:15 p.m.•17 views

CVE-2025-48134

Deserialization of Untrusted Data vulnerability in ShapedPlugin LLC WP Tabs allows Object Injection. This issue affects WP Tabs: from n/a through 2.2.11.

7.2CVSS7AI score0.00063EPSS