CVE-2025-48134
CVE-2025-48134 : Deserialization of untrusted data in the WordPress plugin WP Tabs (ShapedPlugin LLC) allows PHP Object Injection . Affected: WP Tabs <= 2.2.11 (WordPress plugin offering responsive tabs and custom product tabs). The vulnerability origin is a deserialization flaw leading to obj...