Medium severity5.4NVD Advisory· Published Jun 13, 2022· Updated Jun 17, 2026
CVE-2022-1781
CVE-2022-1781
Description
The postTabs WordPress plugin through 2.10.6 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, which also lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/postTabs plugindescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/7f2ae2c9-57d4-46a0-a9a1-585ec543b153nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.