Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Rich-web Subscribe
Filtered by product Tab
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24831 1 Rich-web 1 Tab 2022-02-10 5.0 MEDIUM 7.5 HIGH
All AJAX actions of the Tab WordPress plugin before 1.3.2 are available to both unauthenticated and authenticated users, allowing unauthenticated attackers to modify various data in the plugin, such as add/edit/delete arbitrary tabs.