2 matches found
CVE-2023-51421
CVE-2023-51421 affects Verge3D Publishing and E-Commerce (Soft8Soft) with an Unrestricted Upload of File with Dangerous Type vulnerability. Affected versions: Verge3D Publishing and E-Commerce up to 4.5.2. Root cause: unrestricted file upload potentially allows remote code execution or scripting ...
CVE-2023-51420
The CVE-2023-51420 entry concerns the WordPress Verge3D Plugin (Verge3D Publishing and E‑Commerce) up to version 4.5.2, with an improper control of generation of code vulnerability that enables remote code execution (RCE). According to Patchstack and CVE records, vulnerable versions are