WP-Safety

Rich wordpress tabs plugin

50 active installs v1.0 PHP + WP 4.6+ Updated Feb 11, 2018
categoryresponsive-tabstabbedtabbed-contenttabs
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Tabs Safe to Use in 2026?

Generally Safe

Score 85/100

Tabs has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The "category-and-post-tab" plugin v1.0 exhibits a generally strong security posture based on the provided static analysis. The absence of known vulnerabilities, critical taint flows, and dangerous functions is highly positive. Furthermore, the plugin demonstrates good practices by implementing nonce checks for its AJAX handlers and utilizing prepared statements for a majority of its SQL queries. The minimal attack surface, with all entry points appearing to have authentication checks, is also a strength.

However, a notable area of concern is the complete lack of capability checks across all its entry points. While nonce checks help prevent CSRF, they do not restrict *who* can perform an action. Without capability checks, any authenticated user, regardless of their role or permissions, could potentially interact with the AJAX handlers. The escape rate for output, while at 70%, still leaves room for improvement and could be a vector for stored or reflected XSS if specific patterns of unsanitized data are exploited.

In conclusion, the plugin is built on a solid foundation with no critical or high-severity issues identified in its history or static analysis. The absence of CVEs is reassuring. The primary weakness lies in the missing capability checks, which presents a significant risk to authorization. Addressing this, along with further improving output escaping, would significantly enhance its security.

Key Concerns

  • No capability checks on entry points
  • 30% of outputs are not properly escaped
Vulnerabilities
None known

Tabs Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Tabs Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
3 prepared
Unescaped Output
120
279 escaped
Nonce Checks
4
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

60% prepared5 total queries

Output Escaping

70% escaped399 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
<ajax_load_more_posts> (templates\ajax_load_more_posts.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Tabs Attack Surface

Entry Points7
Unprotected0

AJAX Handlers 6

authwp_ajax_getTotalPostsinclude\categoryposttab.php:36
authwp_ajax_getPostsinclude\categoryposttab.php:37
authwp_ajax_getMorePostsinclude\categoryposttab.php:38
noprivwp_ajax_getTotalPostsinclude\categoryposttab.php:40
noprivwp_ajax_getPostsinclude\categoryposttab.php:41
noprivwp_ajax_getMorePostsinclude\categoryposttab.php:42

Shortcodes 1

[categoryposttab] include\categoryposttab.php:44
WordPress Hooks 5
actionplugins_loadedinclude\abstract.php:56
actionwidgets_initinclude\abstract.php:62
actioninitinclude\abstract.php:67
actionadmin_enqueue_scriptsinclude\abstract.php:69
actioninitinclude\categoryposttab.php:21
Maintenance & Trust

Tabs Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedFeb 11, 2018
PHP min version
Downloads6K

Community Trust

Rating60/100
Number of ratings2
Active installs50
Alternatives

Tabs Alternatives

Tabbed Contents Block – Display Content in Tabbed Layout

Tabbed Contents Block – Display Content in Tabbed Layout

tabbed-contents

A
100

Display responsive, accessible tabs featuring dynamic content.

800 No CVEs
Tabs Responsive – With WooCommerce Product Tabs Extension

Tabs Responsive – With WooCommerce Product Tabs Extension

tabs-responsive

A
100

Tabs Responsive is the most easiest drag & drop Tabs builder for WordPress. You can add unlimited Tabs with unlimited color Scheme.

20K 1 CVE
Gutena Tabs

Gutena Tabs

gutena-tabs

A
100

Gutena Tabs is a simple and easy-to-use WordPress plugin which allows you to create beautiful tabs in your posts and pages.

6K No CVEs
WP Responsive Tabs horizontal vertical and accordion Tabs

WP Responsive Tabs horizontal vertical and accordion Tabs

responsive-horizontal-vertical-and-accordion-tabs

A
97

Create beautiful responsive tabs with a very easy interface. This plugin is all in one tabs plugin means it supports responsive horizontal, vertical a &hellip;

2K 4 CVEs
Tab – Accordion, FAQ

Tab – Accordion, FAQ

tabbed

B
84

Tab allows you to create a simple tabs, responsive tab, animation tab, horizontal tab, vertical tab, circle tab, FAQ, accordion, animation accordion.

1K 1 CVE
Developer Profile

Tabs Developer Profile

ikhodal

6 plugins · 200 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Tabs

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/category-and-post-tab/assets/css/admin-categoryposttab.css/wp-content/plugins/category-and-post-tab/assets/js/admin-categoryposttab.js/wp-content/plugins/category-and-post-tab/assets/css/categoryposttab.css/wp-content/plugins/category-and-post-tab/assets/js/categoryposttab.js
Script Paths
/wp-content/plugins/category-and-post-tab/assets/js/admin-categoryposttab.js/wp-content/plugins/category-and-post-tab/assets/js/categoryposttab.js

HTML / DOM Fingerprints

CSS Classes
categoryposttab_widget_container
Data Attributes
data-cpt-ajax-urldata-cpt-securitydata-cpt-plugin-url
JS Globals
categoryposttab
FAQ

Frequently Asked Questions about Tabs