WordPress Responsive Tabs plugin <= 4.0.5 - Cross-Site Scripting (XSS) vulnerability
Vulnerable versions
<= 4.0.5
PSID
87a492126b59
Classification
Cross Site Scripting (XSS)
OWASP Top 10
A7: Cross-Site Scripting (XSS)
Required privilege
Requires author or higher role user authentication.
Publicly disclosed
2022-04-11
Patchstack vPatch available since
09.12.2021
Details
Cross-Site Scripting (XSS) vulnerability was discovered by Ngo Van Thien (Patchstack Alliance) in WordPress Responsive Tabs plugin (versions <= 4.0.5).
Solution
No patched version is available.
References
CVE-2021-36893
Plugin page