Jtermaat 360 Javascript Viewer
2 CVEs affecting Jtermaat 360 Javascript Viewer. Latest disclosed: 2024-12-12. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-12271 | Medium | 4.4 | 2024-12-12 | The 360 Javascript Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘ref’ parameter in all versions up to, and including, 1.7.2… |
CVE-2024-1637 | Medium | 4.3 | 2024-04-09 | The 360 Javascript Viewer plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check and nonce exposure on sever… |