CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Missing Authorization vulnerability in Soft8Soft LLC Verge3D verge3d allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Verge3D: from n/a through = 4.9.4...

5.3CVSS5.9AI score0.0023EPSS

Exploits0References1

NVD•added 2025/06/06 1:15 p.m.•4 views

CVE-2025-49268

Missing Authorization vulnerability in Soft8Soft LLC Verge3D verge3d allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Verge3D: from n/a through = 4.9.4...

5.3CVSS0.0023EPSS

Exploits0References1

CVE•added 2025/06/06 12:53 p.m.•33 views

CVE-2025-49268

CVE-2025-49268 is a missing-authorization (broken access control) vulnerability in Verge3D by Soft8Soft. Affected software: Verge3D Publishing and E‑Commerce, versions up to and including 4.9.4 (historical range listed as from n/a through 4.9.4). Public references indicate unauthorized access con...

5.3CVSS5.9AI score0.0023EPSS

Exploits0References1

Vulnrichment•added 2025/06/06 12:53 p.m.•4 views

CVE-2025-49268 WordPress Verge3D plugin <= 4.9.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Soft8Soft LLC Verge3D verge3d allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Verge3D: from n/a through = 4.9.4...

5.3CVSS5.1AI score0.0023EPSS

Exploits0References1

Cvelist•added 2025/06/06 12:53 p.m.•10 views

CVE-2025-49268 WordPress Verge3D plugin <= 4.9.4 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Soft8Soft LLC Verge3D verge3d allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Verge3D: from n/a through = 4.9.4...

5.3CVSS0.0023EPSS

Exploits0References1

Positive Technologies•added 2025/06/06 12:0 a.m.•1 views

PT-2025-24213 · Verge3D · Verge3D

Name of the Vulnerable Software and Affected Versions: Verge3D versions 4.9.4 and earlier Description: The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. Recommendations: For Verge3D versions 4.9.4 and...

5.3CVSS5AI score0.0023EPSS

Exploits0References3

CNNVD•added 2025/06/06 12:0 a.m.•1 views

WordPress plugin Verge3D 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.3CVSS5.5AI score0.0023EPSS

Exploits0References1

Patchstack•added 2025/05/29 3:28 p.m.•7 views

WordPress Verge3D plugin <= 4.9.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Hiro Code016Hiro in WordPress Plugin Verge3D versions = 4.9.3...

7.1CVSS5.9AI score0.00185EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/05/25 1:19 p.m.•5 views

CVE-2025-48241

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Soft8Soft LLC Verge3D verge3d allows Reflected XSS.This issue affects Verge3D: from n/a through = 4.9.3...

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

NVD•added 2025/05/23 1:15 p.m.•7 views

CVE-2025-48241

7.1CVSS0.00185EPSS

Exploits0References1

CVE•added 2025/05/23 12:43 p.m.•42 views

CVE-2025-48241

CVE-2025-48241 corresponds to a Reflected XSS in Verge3D for WordPress (Verge3D

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

Cvelist•added 2025/05/23 12:43 p.m.•11 views