cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches foredd-tab-manager edd-tab-manager

Direction: ascending
Jun 06, 2024

EDD Tab Manager # 53309403d29ca63fae158792af07020e21b52bb6

CVE, Research URL

53309403d29ca63fae158792af07020e21b52bb6

Home page URL

Security reports for EDD Tab Manager

Application

EDD Tab Manager

Date
Feb 28, 2022
Research Description
EDD Tab Manager [edd-tab-manager] < 1.3.1 (closed) WordPress EDD Tab Manager plugin <= 1.3.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress EDD Tab Manager plugin (versions <= 1.3.0).
Affected versions
max 1.3.1.
Status
vulnerable
Jun 13, 2026

EDD Tab Manager # CVE-2023-33999

CVE, Research URL

CVE-2023-33999

Home page URL

Security reports for EDD Tab Manager

Application

EDD Tab Manager

Date
Jun 11, 2026
Research Description
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in WPVibes WP Mail Log allows DOM-Based XSS. This issue affects WP Mail Log: from n/a through 1.0.2.
Affected versions
max 1.3.1.
Status
vulnerable
Jun 16, 2026

EDD Tab Manager # 32fc7323bd2cb7daa279e08a73b93a0f3893c3c4

CVE, Research URL

32fc7323bd2cb7daa279e08a73b93a0f3893c3c4

Home page URL

Security reports for EDD Tab Manager

Application

EDD Tab Manager

Date
Feb 28, 2022
Research Description
EDD Tab Manager [edd-tab-manager] < 1.3.1 (closed) WordPress EDD Tab Manager plugin <= 1.3.0 - Sensitive Information Disclosure vulnerability Sensitive Information Disclosure vulnerability discovered in WordPress EDD Tab Manager plugin (versions <= 1.3.0).
Affected versions
max 1.3.1.
Status
vulnerable

EDD Tab Manager # 7e57cd4f4859826de00a8e2b09ee24fb7f2d824b

CVE, Research URL

7e57cd4f4859826de00a8e2b09ee24fb7f2d824b

Home page URL

Security reports for EDD Tab Manager

Application

EDD Tab Manager

Date
Feb 25, 2019
Research Description
EDD Tab Manager [edd-tab-manager] < 1.3.1 (closed) Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update The Freemius SDK for WordPress is vulnerable to authorization bypass due to a missing capability check on the _get_db_option and _set_db_option functions in versions up to, and including, 2.2.3. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to change site settings and potentially take over the site.
Affected versions
max 1.3.1.
Status
vulnerable

EDD Tab Manager # 6ff37c2e-e21d-4abc-bafe-8ca6a2c1ed76

CVE, Research URL

6ff37c2e-e21d-4abc-bafe-8ca6a2c1ed76

Home page URL

Security reports for EDD Tab Manager

Application

EDD Tab Manager

Date
-
Research Description
EDD Tab Manager [edd-tab-manager] < 1.3.1 (closed) Freemius Library &lt; 2.2.4 - Subscriber+ Arbitrary Option Update The library, used in numerous plugins, does not have proper authorisation when updating blog options, allowing any authenticated users, such as subscriber to update arbitrary options
Affected versions
max 1.3.1.
Status
vulnerable