CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Shapedplugin: >> Wp Tabs >> 2.2.2 Security Vulnerabilities

CVE-2025-48134

Deserialization of Untrusted Data vulnerability in ShapedPlugin LLC WP Tabs wp-expand-tabs-free allows Object Injection.This issue affects WP Tabs: from n/a through <= 2.2.12.

CVSS Score

7.2

EPSS Score

0.004

Published

2025-05-16

CVE-2024-11503

The WP Tabs WordPress plugin before 2.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

CVSS Score

6.1

EPSS Score

0.003

Published

2025-03-25

Page 1

Vulnerabilities

Vulnerable Software

Shapedplugin: >> Wp Tabs >> 2.2.2 Security Vulnerabilities

Products

Pricing

Contact Us