A vulnerability was found in Vrm 360 3D Model Viewer Plugin up to 1.2.1 on WordPress. It has been classified as critical. This affects an unknown part of the component Shortcode Handler. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2023-4311. It is possible to initiate the attack remotely. There is no exploit available.