RSS   Vulnerabilities for 'TAB'   RSS

2022-01-03
 
CVE-2021-24831

CWE-862
 

 
All AJAX actions of the Tab WordPress plugin before 1.3.2 are available to both unauthenticated and authenticated users, allowing unauthenticated attackers to modify various data in the plugin, such as add/edit/delete arbitrary tabs.

 


Copyright 2024, cxsecurity.com

 

Back to Top