26 matches found
CVE-2026-8682
The 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.1. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...
CVE-2026-8682 3D Viewer <= 2.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Modification via settings REST endpoint
The 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.1. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...
PT-2026-44208
The 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.1. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...
WordPress 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On plugin <= 2.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Modification vulnerability
Missing Authorization to Authenticated Subscriber+ Arbitrary Plugin Settings Modification vulnerability discovered by Legion Hunter in WordPress Plugin 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On versions = 2.0.1...
CVE-2022-41197
Due to lack of proper memory management, when a victim opens a manipulated VRML Worlds .wrl, vrml.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of t...
CVE-2020-6345
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated TGA file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...
CVE-2024-20677
A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to insert FBX files has been disabled in Word, Excel, PowerPoint and Outlook for Windows and Mac. Versions of Office that had this feature enabled will no longer have acces...
The vulnerability of the 3D viewing tool JT and JT2Go, as well as the Teamcenter Visualization lifecycle management system, relates to buffer overflow in dynamic memory. This vulnerability allows attackers to execute arbitrary code.
The vulnerability of the 3D viewing tool JT and the Teamcenter Visualization lifecycle management system lies in buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created WRL file...
The vulnerability of the 3D viewing tool JT and JT2Go, as well as the Teamcenter Visualization lifecycle management system, allows a perpetrator to trigger a service failure.
The vulnerability of the 3D viewing tool JT and the Teamcenter Visualization lifecycle management system lies in the handling of the zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure during the analysis of a specially created CGM file...
CVE-2022-41199
Due to lack of proper memory management, when a victim opens a manipulated Open Inventor File .iv, vrml.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow ...
Open Design Alliance Drawings SDK 缓冲区错误漏洞
JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML, and available JT, VFZ, CGM, and TIF data. teamcenter Visualization enables companies to enhance their product lifecycle management PLM environments with a comprehensive family of visualization solutions. The...
SAP 3D Visual Enterprise Viewer 输入验证错误漏洞
SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP Germany. The software supports publishing 2D and 3D scenes in all industry-standard desktop applications and supports separate installations as standalone executables and ActiveX spaces. The vulnerability can be exploited to crash the...
3d-preview (>=1.0.0 <=1.0.1), 3dviewercomponent (=1.0.0) +2603 more potentially affected by CVE-2022-0436 via grunt (>=0.2.14 <=1.4.1)
grunt NPM version =0.2.14, =1.0.0, =0.0.2, =1.0.1, =1.0.0, =0.0.1, =1.0.0-alpha1, =0.1.0, =0.4.0, =0.0.9, =0.0.6, =0.12.0-edge9, =0.0.5, =0.0.2, =1.0.1 and more Source cves: CVE-2022-0436 Source advisory: OSV:GHSA-J383-35PM-C5H4...
SAP 3D Visual Enterprise Viewer 输入验证错误漏洞
SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP Germany. SAP 3D Visual Enterprise Viewer version 9.0 is vulnerable to an input validation error that could be exploited to crash the application and temporarily disable users until the application is restarted. The application can be...
SAP 3D Visual Enterprise Viewer 输入验证错误漏洞
SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP Germany. SAP 3D Visual Enterprise Viewer version 9.0 is vulnerable to an input validation error that could be exploited to crash the application and temporarily disable the user until the application is restarted. The application can be...
CVE-2021-43209
3D Viewer Remote Code Execution Vulnerability...
SAP 3D Visual Enterprise Viewer Buffer Overflow Vulnerability (CNVD-2021-03129)
SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP, Germany. The software supports the publishing of 2D and 3D scenes in all industry-standard desktop applications and supports separate installation as a stand-alone executable program and ActiveX space. A buffer overflow vulnerability...
SAP 3D Visual Enterprise Viewer Buffer Overflow Vulnerability (CNVD-2021-03131)
SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP, Germany. The software supports the publishing of 2D and 3D scenes in all industry-standard desktop applications and supports separate installation as a stand-alone executable program and ActiveX space. A buffer overflow vulnerability...
SAP 3D Visual Enterprise Viewer Buffer Overflow Vulnerability (CNVD-2021-03134)
SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP, Germany. The software supports the publishing of 2D and 3D scenes in all industry-standard desktop applications and supports separate installation as a stand-alone executable program and ActiveX space. A buffer overflow vulnerability...
CVE-2021-21454
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated RLE file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...