CVE-2026-8682 | hasanazizul 3D Viewer Plugin up to 2.0.1 on WordPress REST Endpoint ar_try_on_settings authorization

Inserito da Angelo Barbosa | Mag 28, 2026 | CVE

A vulnerability was found in hasanazizul 3D Viewer Plugin up to 2.0.1 on WordPress. It has been classified as critical. This impacts the function ar_try_on_settings of the component REST Endpoint. This manipulation causes missing authorization.

This vulnerability is registered as CVE-2026-8682. Remote exploitation of the attack is possible. No exploit is available.

CVE-2026-8682 | hasanazizul 3D Viewer Plugin up to 2.0.1 on WordPress REST Endpoint ar_try_on_settings authorization

Post correlati

CVE-2026-1543 | themefusion Avada Builder Plugin up to 3.15.2 on WordPress Dynamic Data Feature cross site scripting

CVE-2024-35628 | 10Web Photo Gallery Plugin up to 1.8.24 on WordPress authorization

CVE-2025-7029 | GIGABYTE UEFI-OverClockSmiHandler 1.0.0 Software SMI SwSmiInputValue untrusted pointer dereference

CVE-2024-52739 | D-Link DI-8400 16.07.26A1 msp_info_htm cmd Privilege Escalation