Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tabs project tabs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-40215
Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in Tabs plugin <= 3.7.1 at WordPress.
Tabs Project Tabs
3.5
CVSSv2
CVE-2015-4373
Cross-site scripting (XSS) vulnerability in the OG tabs module prior to 7.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via vectors related to nodes posted in an Organic Groups group.
Og Tabs Project Og Tabs
4.3
CVSSv2
CVE-2014-4531
Cross-site scripting (XSS) vulnerability in main_page.php in the Game tabs plugin 0.4.0 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the n parameter.
Game Tabs Project Game Tabs 0.4.0
5
CVSSv2
CVE-2013-4406
The Quick Tabs module 6.x-2.x prior to 6.x-2.2, 6.x-3.x prior to 6.x-3.2, and 7.x-3.x prior to 7.x-3.6 for Drupal does not properly check block permissions, which allows remote malicious users to obtain sensitive information by reading a Quick Tab.
Quick Tabs Module Project Quicktabs 6.x-3.0
Quick Tabs Module Project Quicktabs 6.x-3.x
Quick Tabs Module Project Quicktabs 6.x-3.1
Quick Tabs Module Project Quicktabs 7.x-3.1
Quick Tabs Module Project Quicktabs 7.x-3.0
Quick Tabs Module Project Quicktabs 7.x-3.4
Quick Tabs Module Project Quicktabs 7.x-3.2
Quick Tabs Module Project Quicktabs 7.x-3.5
Quick Tabs Module Project Quicktabs 7.x-3.3
Quick Tabs Module Project Quicktabs 7.x-3.x
Quick Tabs Module Project Quicktabs 6.x-2.1
Quick Tabs Module Project Quicktabs 6.x-2.0
Quick Tabs Module Project Quicktabs 6.x-2.x
NA
CVE-2023-22688
Cross-Site Request Forgery (CSRF) vulnerability in Abdul Ibad WP Tabs Slides plugin <= 2.0.3 versions.
Wp Tabs Slides Project Wp Tabs Slides
NA
CVE-2023-0368
The Responsive Tabs For WPBakery Page Builder (formerly Visual Composer) WordPress plugin up to and including 1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with th...
Responsive Tabs For Wpbakery Page Builder Project Responsive Tabs For Wpbakery Page Builder
5
CVSSv2
CVE-2019-16096
Kilo 0.0.1 has a heap-based buffer overflow because there is an integer overflow in a calculation involving the number of tabs in one row.
Kilo Project Kilo 0.0.1
2.6
CVSSv2
CVE-2008-2933
Mozilla Firefox prior to 2.0.0.16, and 3.x prior to 3.0.1, interprets '|' (pipe) characters in a command-line URI as requests to open multiple tabs, which allows remote malicious users to access chrome:i URIs, or read arbitrary local files via manipulations involving a ...
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.4
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.7
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.7
Mozilla Firefox 1.5.8
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0 8
Mozilla Firefox 3.0
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.8
7.5
CVSSv2
CVE-2015-0823
Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used in Mozilla Firefox prior to 36.0, might allow remote malicious users to trigger problematic Developer Console information or possibly have unspecified other impact by leveraging incorrect macro expansion, rela...
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 14.10
Opentype Sanitiser Project Opentype Sanitiser
Mozilla Firefox
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.25
Mozilla Firefox 3.6.24
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.19
Mozilla Firefox 3.5.12
Mozilla Firefox 3.5.11
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.15
Mozilla Firefox 3.0.14
5
CVSSv2
CVE-2008-1238
Mozilla Firefox prior to 2.0.0.13 and SeaMonkey prior to 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote malicious users to bypass application prote...
Mozilla Firefox
Mozilla Seamonkey
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »