Known Vulnerabilities for WP Tabs by ShapedPlugin LLC
Listed below are 10 of the newest known vulnerabilities associated with "WP Tabs" by "ShapedPlugin LLC".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44658 json | Zen is a firefox-based browser. Prior to 1.19.12b, RSS feed URLs entered by the user are validated to http: or https: in prom... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42439 json | OpenClaw before 2026.4.10 contains a server-side request forgery policy bypass vulnerability in the browser tabs action selec... | Not Provided | 2026-05-05 | 2026-05-05 |
| CVE-2026-35673 json | OpenClaw before 2026.4.29 contains an SSRF policy bypass vulnerability in browser debug and export routes that allows reuse o... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-13803 json | Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rende... | Not Provided | 2026-06-30 | 2026-07-02 |
| CVE-2026-11600 json | The Envo's Templates & Widgets for Elementor and WooCommerce plugin for WordPress is vulnerable to unauthorized access of dat... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-11326 json | OpenAI Atlas before 1.2025.288.15 exposed privileged browser APIs to web content on *.openai.com origins. A cross-site script... | Not Provided | 2026-06-05 | 2026-06-05 |
| CVE-2026-11035 json | Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to pe... | Not Provided | 2026-06-04 | 2026-06-05 |
| CVE-2026-0707 json | A flaw was found in Keycloak. The Keycloak Authorization header parser is overly permissive regarding the formatting of the "... | Not Provided | 2026-01-08 | 2026-06-08 |
| CVE-2025-68499 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Crocoblock JetTabs jet-... | Not Provided | 2025-12-30 | 2026-04-23 |
| CVE-2025-68498 json | Missing Authorization vulnerability in Crocoblock JetTabs jet-tabs allows Exploiting Incorrectly Configured Access Control Se... | Not Provided | 2025-12-30 | 2026-04-23 |