Browse all 2 CVE security advisories affecting Taboola. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32545 | WordPress Taboola Pixel plugin <= 1.1.4 - Reflected Cross Site Scripting (XSS) vulnerability — Taboola PixelCWE-79 | 6.1 | - | 2026-03-25 |
| CVE-2023-38398 | WordPress Taboola Plugin <= 2.0.1 is vulnerable to Cross Site Request Forgery (CSRF) — TaboolaCWE-352 | 4.3 | Medium | 2023-10-03 |
This page lists every published CVE security advisory associated with Taboola. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.