Does Tabbed Cats have any unpatched vulnerabilities?

No. All known vulnerabilities in Tabbed Cats have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tabbed Cats compatible with WordPress 5.7.15?

According to WordPress.org data, Tabbed Cats 0.4 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

How often is Tabbed Cats updated?

Tabbed Cats was last updated on Feb 9, 2021. Frequent updates are generally a positive security signal.

What is Tabbed Cats's security score?

Tabbed Cats has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tabbed Cats Security & Risk Analysis

wordpress.org/plugins/tabbed-cats

Show some subcategories in tabs based on CSS tabs only. tabbedcats @wpplugindevcom

10 active installs v0.4 PHP + WP 3.0+ Updated Feb 9, 2021

categoriescategoryfrontendregistertabs

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Tabbed Cats Safe to Use in 2026?

Generally Safe

Score 85/100

Tabbed Cats has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The 'tabbed-cats' plugin v0.4 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by not utilizing dangerous functions, performing all SQL queries using prepared statements, and having no recorded vulnerabilities in its history. The static analysis also indicates a minimal attack surface with only one shortcode and no AJAX handlers or REST API routes that lack authentication. Taint analysis shows no identified flows with unsanitized paths, further suggesting a lack of immediate critical vulnerabilities.

However, there are significant concerns regarding output escaping. With 100% of its outputs unescaped, this plugin presents a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any data rendered directly to the browser without proper sanitization or escaping is susceptible to malicious injection. Additionally, the absence of nonce checks and capability checks, especially considering the potential for data to be rendered, is a notable weakness. While the attack surface is currently small, any future expansion without incorporating these fundamental security measures could introduce significant risks.

Key Concerns

Unescaped output
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Tabbed Cats Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Tabbed Cats Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped3 total outputs

Attack Surface

Tabbed Cats Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[tabbed_cats] tabbed-cats.php:43

WordPress Hooks 1

actionwp_enqueue_scriptstabbed-cats.php:46

Maintenance & Trust

Tabbed Cats Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedFeb 9, 2021

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Tabbed Cats Alternatives

Front-end Category Management

front-end-category-management

A handy and simple plugin for creating/editing categories/terms and sub-categories on the WordPress user end.

20 No CVEs

Category Order and Taxonomy Terms Order

taxonomy-terms-order

Drag-and-drop ordering for Categories & any taxonomy (hierarchically) using a Drag and Drop Sortable JavaScript capability.

500K 2 CVEs

Categories Images

categories-images

100

The Categories Images is a Wordpress plugin allow you to add image to category, tag or custom taxonomy.

50K No CVEs

Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI

simple-tags

Tags, Categories and WordPress terms are easy with TaxoPress. Add a Tag or Category to Pages, manage your WooCommerce Categories and Tags and more.

50K 13 CVEs

Ultimate Category Excluder

ultimate-category-excluder

Ultimate Category Excluder allows you to quickly and easily exclude categories from your front page, archives, feeds, and search results.

50K 1 CVE

Developer Profile

Tabbed Cats Developer Profile

theode

11 plugins · 220 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tabbed Cats

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tabbed-cats/tabs.css

HTML / DOM Fingerprints

Shortcode Output

tabbed_cats

FAQ