WP-Safety

Custom Product tabs for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wb-custom-product-tabs-for-woocommerce

Create unlimited WooCommerce tabs and assign them in bulk by category, tag, brand, or product. Also disable WooCommerce’s default product tabs.

10K active installs v1.6.5 PHP 5.6+ WP 3.5.0+ Updated Mar 26, 2026
product-tabstabstabs-pluginwoocommerce-custom-tabswoocommerce-product-tabs
98
A · Safe
CVEs total1
Unpatched0
Last CVEDec 20, 2024
Plugin page Download
Safety Verdict

Is Custom Product tabs for WooCommerce Safe to Use in 2026?

Generally Safe

Score 98/100

Custom Product tabs for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Dec 20, 2024Updated 1mo ago
Risk Assessment

The "wb-custom-product-tabs-for-woocommerce" plugin v1.6.4 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and properly escaping the vast majority of its output. The absence of file operations and a lack of critical or high severity taint flows are also encouraging signs. However, significant concerns remain regarding its attack surface and past vulnerability history.

The plugin exposes one AJAX handler without any authentication checks, creating a potential entry point for unauthenticated attackers. While there are no identified critical or high severity taint flows in the static analysis, this unprotected AJAX endpoint could be leveraged to trigger unintended actions or expose sensitive information if not handled with extreme care within the plugin's code. Furthermore, the plugin has a history of a high severity vulnerability related to deserialization of untrusted data, indicating a past weakness that could reappear or be exploited in different forms if not thoroughly addressed.

In conclusion, while the plugin employs some strong security fundamentals, the unprotected AJAX endpoint and its past high-severity vulnerability history present notable risks. The overall security is weakened by these factors, requiring careful monitoring and potentially further hardening of the exposed entry point. The lack of capability checks on the AJAX handler is a particularly glaring omission.

Key Concerns

  • AJAX handler without auth checks
  • High severity vulnerability history
  • 0 capability checks
Vulnerabilities
1 published

Custom Product tabs for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2024-12721high · 7.2Deserialization of Untrusted Data

Custom Product Tabs For WooCommerce <= 1.2.4 - Authenticated (Shop Manager+) PHP Object Injection

Dec 20, 2024 Patched in 1.2.5 (20d)
Version History

Custom Product tabs for WooCommerce Release Timeline

v1.6.5Current
v1.6.4
v1.6.3
v1.6.2
v1.6.1
v1.6.0
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.5
v1.3.4
v1.3.3
v1.3.2
v1.3.1
v1.3.0
Code Analysis
Analyzed Mar 16, 2026

Custom Product tabs for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
3
125 escaped
Nonce Checks
2
Capability Checks
0
File Operations
0
External Requests
1
Bundled Libraries
0

SQL Query Safety

100% prepared4 total queries

Output Escaping

98% escaped128 total outputs
Attack Surface
1 unprotected

Custom Product tabs for WooCommerce Attack Surface

Entry Points3
Unprotected1

AJAX Handlers 2

authwp_ajax_wb_cptb_submit_feedbackadmin\classes\class-wb-custom-product-tabs-for-woocommerce-feedback.php:11
authwp_ajax_wb_tabs_review_banner_dismissincludes\class-wb-custom-product-tabs-for-woocommerce.php:273

Shortcodes 1

[wb_cpt_youtube_embed_shortcode] includes\class-wb-custom-product-tabs-for-woocommerce.php:314
WordPress Hooks 32
filterwp_kses_allowed_htmladmin\class-wb-custom-product-tabs-for-woocommerce-admin.php:151
filtersafe_style_cssadmin\class-wb-custom-product-tabs-for-woocommerce-admin.php:158
actionadmin_print_footer_scriptsadmin\class-wb-custom-product-tabs-for-woocommerce-admin.php:632
actionadmin_footeradmin\classes\class-wb-custom-product-tabs-for-woocommerce-feedback.php:10
actioninitincludes\class-wb-custom-product-tabs-for-woocommerce.php:141
actionadmin_enqueue_scriptsincludes\class-wb-custom-product-tabs-for-woocommerce.php:155
actionadmin_enqueue_scriptsincludes\class-wb-custom-product-tabs-for-woocommerce.php:156
filterwoocommerce_product_data_tabsincludes\class-wb-custom-product-tabs-for-woocommerce.php:159
actionwoocommerce_product_data_panelsincludes\class-wb-custom-product-tabs-for-woocommerce.php:162
actionwoocommerce_process_product_metaincludes\class-wb-custom-product-tabs-for-woocommerce.php:165
actioninitincludes\class-wb-custom-product-tabs-for-woocommerce.php:172
actionadd_meta_boxesincludes\class-wb-custom-product-tabs-for-woocommerce.php:179
actionsave_postincludes\class-wb-custom-product-tabs-for-woocommerce.php:186
actionmedia_buttonsincludes\class-wb-custom-product-tabs-for-woocommerce.php:216
actionin_admin_headerincludes\class-wb-custom-product-tabs-for-woocommerce.php:223
actionin_plugin_update_message-wb-custom-product-tabs-for-woocommerce/wb-custom-product-tabs-for-woocommerce.phpincludes\class-wb-custom-product-tabs-for-woocommerce.php:230
actionadmin_head-edit.phpincludes\class-wb-custom-product-tabs-for-woocommerce.php:237
actionmce_buttonsincludes\class-wb-custom-product-tabs-for-woocommerce.php:244
filterpll_get_post_typesincludes\class-wb-custom-product-tabs-for-woocommerce.php:251
actionadmin_initincludes\class-wb-custom-product-tabs-for-woocommerce.php:258
filteradmin_menuincludes\class-wb-custom-product-tabs-for-woocommerce.php:265
actionadmin_noticesincludes\class-wb-custom-product-tabs-for-woocommerce.php:272
actionadmin_initincludes\class-wb-custom-product-tabs-for-woocommerce.php:274
actionexport_wpincludes\class-wb-custom-product-tabs-for-woocommerce.php:282
filterwp_import_post_metaincludes\class-wb-custom-product-tabs-for-woocommerce.php:290
actionwp_enqueue_scriptsincludes\class-wb-custom-product-tabs-for-woocommerce.php:304
actionwp_enqueue_scriptsincludes\class-wb-custom-product-tabs-for-woocommerce.php:305
filterwoocommerce_product_tabsincludes\class-wb-custom-product-tabs-for-woocommerce.php:307
actionwp_footerincludes\class-wb-custom-product-tabs-for-woocommerce.php:321
filterwoocommerce_product_tabsincludes\class-wb-custom-product-tabs-for-woocommerce.php:329
actionadmin_footerwb-custom-product-tabs-for-woocommerce.php:46
actionbefore_woocommerce_initwb-custom-product-tabs-for-woocommerce.php:119
Maintenance & Trust

Custom Product tabs for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested7.0
Last updatedMar 26, 2026
PHP min version5.6
Downloads123K

Community Trust

Rating98/100
Number of ratings47
Active installs10K
Alternatives

Custom Product tabs for WooCommerce Alternatives

Product Tabs for WooCommerce

Product Tabs for WooCommerce

woocommerce-product-tabs

A
100

Discover the easy way to add extra tabs to your WooCommerce product pages.

10K No CVEs
Custom Product Tabs for WooCommerce & WordPress Tabs Builder – Smart Tabs

Custom Product Tabs for WooCommerce & WordPress Tabs Builder – Smart Tabs

wp-expand-tabs-free

A
96

A customizable plugin to create and manage WooCommerce product tabs and WordPress tabs to organize content.

10K 5 CVEs
Dynamic Product Tabs Builder for WooCommerce

Dynamic Product Tabs Builder for WooCommerce

dynamic-product-tabs-builder-for-woocommerce

A
100

Create custom product tabs with custom content for clearer WooCommerce product pages - Defined sitewide or per product.

0 No CVEs
TG Product Tab Manager

TG Product Tab Manager

product-tab-manager

A
92

This plugin allows you to manage your Woocommerce product page tabs. Tabs can be renamed, removed and re-ordered on the single product page.

10 No CVEs
Product Tabs Manager – Custom WooCommerce Product Tabs, Extra Tabs, Tab Editor & Tab Customizer

Product Tabs Manager – Custom WooCommerce Product Tabs, Extra Tabs, Tab Editor & Tab Customizer

product-tabs-manager

A
100

Create unlimited custom WooCommerce product tabs, manage default tabs, exclude tabs by product or category, add specifications, FAQs & more – 100% &hellip;

10 No CVEs
Developer Profile

Custom Product tabs for WooCommerce Developer Profile

Web Builder 143

3 plugins · 11K total installs

87
trust score
Avg Security Score
99/100
Avg Patch Time
39 days
View full developer profile
Detection Fingerprints

How We Detect Custom Product tabs for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wb-custom-product-tabs-for-woocommerce/css/wb-custom-product-tabs-for-woocommerce-admin.css/wp-content/plugins/wb-custom-product-tabs-for-woocommerce/js/wb-custom-product-tabs-for-woocommerce-admin.js
Script Paths
js/wb-custom-product-tabs-for-woocommerce-admin.js
Version Parameters
wb-custom-product-tabs-for-woocommerce-admin.css?ver=wb-custom-product-tabs-for-woocommerce-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
wb-custom-product-tabs-for-woocommerce-admin
Data Attributes
data-slug="wb-custom-product-tabs-for-woocommerce"
JS Globals
wb_custom_tabs_params
FAQ

Frequently Asked Questions about Custom Product tabs for WooCommerce