Unrated severityNVD Advisory· Published Jan 3, 2022· Updated Aug 3, 2024

Tab - Accordion, FAQ < 1.3.2 - Unauthenticated AJAX Calls

CVE-2021-24831

Description

All AJAX actions of the Tab WordPress plugin before 1.3.2 are available to both unauthenticated and authenticated users, allowing unauthenticated attackers to modify various data in the plugin, such as add/edit/delete arbitrary tabs.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

WordPress/Tabdescription
WordPress/Tabllm-create
Range: <1.3.2

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/75ed9f5f-e091-4372-a6cb-57958ad5f900mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000