CVE-2024-4096

The Responsive Tabs WordPress plugin through 4.0.8 does not sanitise and escape some of its Tab settings, which could allow high privilege users such as Contributors and above to perform Stored Cross-Site Scripting attacks
Configurations

Configuration 1 (hide)

cpe:2.3:a:wpdarko:responsive_tabs:*:*:*:*:*:wordpress:*:*

History

28 May 2025, 00:52

Type Values Removed Values Added
CWE CWE-79
References () https://wpscan.com/vulnerability/4dba5e9e-24be-458a-9150-7c7a958e66cb/ - () https://wpscan.com/vulnerability/4dba5e9e-24be-458a-9150-7c7a958e66cb/ - Exploit, Third Party Advisory
First Time Wpdarko
Wpdarko responsive Tabs
CPE cpe:2.3:a:wpdarko:responsive_tabs:*:*:*:*:*:wordpress:*:*

Information

Published : 2024-07-30 06:15

Updated : 2025-05-28 00:52


NVD link : CVE-2024-4096

Mitre link : CVE-2024-4096

CVE.ORG link : CVE-2024-4096


JSON object : View

Products Affected

wpdarko

  • responsive_tabs
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')