VYPR

Vrm 360 3D Model Viewer

by WordPress

CVEs (2)

  • CVE-2023-4311HigDec 18, 2023
    risk 0.57cvss 8.8epss 0.01

    The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 is vulnerable to arbitrary file upload due to insufficient checks in a plugin shortcode.

  • CVE-2023-5177MedOct 16, 2023
    risk 0.34cvss 5.3epss 0.01

    The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 exposes the full path of a file when putting in a non-existent file in a parameter of the shortcode.