CVE-2025-49268
- EPSS 0.06%
- Veröffentlicht 06.06.2025 12:53:39
- Zuletzt bearbeitet 06.06.2025 14:06:58
Missing Authorization vulnerability in Soft8Soft LLC Verge3D allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Verge3D: from n/a through 4.9.4.
CVE-2025-48241
- EPSS 0.05%
- Veröffentlicht 23.05.2025 12:43:17
- Zuletzt bearbeitet 23.05.2025 15:54:42
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Soft8Soft LLC Verge3D allows Reflected XSS. This issue affects Verge3D: from n/a through 4.9.3.
CVE-2025-39443
- EPSS 0.08%
- Veröffentlicht 17.04.2025 15:15:44
- Zuletzt bearbeitet 17.04.2025 20:21:05
Cross-Site Request Forgery (CSRF) vulnerability in Soft8Soft LLC Verge3D allows Cross Site Request Forgery. This issue affects Verge3D: from n/a through 4.9.0.
CVE-2025-30833
- EPSS 0.08%
- Veröffentlicht 27.03.2025 10:55:21
- Zuletzt bearbeitet 27.03.2025 16:45:12
Cross-Site Request Forgery (CSRF) vulnerability in Soft8Soft LLC Verge3D allows Cross Site Request Forgery. This issue affects Verge3D: from n/a through 4.8.2.
CVE-2025-22709
- EPSS 0.14%
- Veröffentlicht 21.01.2025 14:15:10
- Zuletzt bearbeitet 21.01.2025 14:15:10
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Soft8Soft LLC Verge3D allows Reflected XSS. This issue affects Verge3D: from n/a through 4.8.0.
CVE-2023-51421
- EPSS 0.66%
- Veröffentlicht 29.12.2023 14:15:47
- Zuletzt bearbeitet 21.11.2024 08:38:04
Unrestricted Upload of File with Dangerous Type vulnerability in Soft8Soft LLC Verge3D Publishing and E-Commerce.This issue affects Verge3D Publishing and E-Commerce: from n/a through 4.5.2.
CVE-2023-51420
- EPSS 0.15%
- Veröffentlicht 29.12.2023 10:15:13
- Zuletzt bearbeitet 21.11.2024 08:38:04
Improper Control of Generation of Code ('Code Injection') vulnerability in Soft8Soft LLC Verge3D Publishing and E-Commerce.This issue affects Verge3D Publishing and E-Commerce: from n/a through 4.5.2.