Maurice: Security Vulnerabilities
The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 is vulnerable to arbitrary file upload due to insufficient checks in a plugin shortcode.
CVSS Score
8.8
EPSS Score
0.004
Published
2023-12-18
The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 exposes the full path of a file when putting in a non-existent file in a parameter of the shortcode.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-10-16