cleantalk
Vulnerabilities and Security Researches

EDD Tab Manager, 6ff37c2e-e21d-4abc-bafe-8ca6a2c1ed76

CVE, Research URL

6ff37c2e-e21d-4abc-bafe-8ca6a2c1ed76

Home page URL

Security reports for EDD Tab Manager

Application

EDD Tab Manager

Published on
-
Research Description
EDD Tab Manager [edd-tab-manager] < 1.3.1 (closed) Freemius Library &lt; 2.2.4 - Subscriber+ Arbitrary Option Update The library, used in numerous plugins, does not have proper authorisation when updating blog options, allowing any authenticated users, such as subscriber to update arbitrary options
Affected versions
max 1.3.1.
Status
vulnerable
Previous vulnerability researches
WPvivid Backup for MainWP (ec00cf2f6a6757dc3371250c1689bf0e482f89f9) , Jun 16, 2026
WPvivid Backup for MainWP (2c3fbbc425bd92d0f969e669e6a4b8564997aa02) , Jun 16, 2026
WPvivid Backup for MainWP (CVE-2024-35664) , Jun 06, 2024
WPvivid Backup for MainWP (CVE-2024-1383) , Jun 06, 2024
New vulnerability
Duplicate Page (d4a895e4769fefb1c9cedee221ed3553b4e736dd) , Jun 16, 2026
Duplicate Page (d668ff1a-7c38-4d7c-95a0-a64f5e741f2e) , Jun 16, 2026
Duplicate Page (8faa17db6e4c4c305ccdf3047e6868029ac7b535) , Jun 16, 2026
Duplicate Page (7b71ccf24044ee8cc2cb48e21b580dfda394bc1f) , Jun 16, 2026
Rate limiting for Contact Form 7 (9498753dd48ecd8ab5b77a57796a8c0ee8b085e4) , Jun 16, 2026