Webandprint Ar For Wordpress
4 CVEs affecting Webandprint Ar For Wordpress. Latest disclosed: 2025-09-26. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-50496 | Critical | 10.0 | 2024-10-28 | Unrestricted Upload of File with Dangerous Type vulnerability in webandprint AR For WordPress ar-for-wordpress allows Upload a Web Shell to a Web Server.This i… |
CVE-2025-60156 | Critical | 9.6 | 2025-09-26 | Cross-Site Request Forgery (CSRF) vulnerability in webandprint AR For WordPress ar-for-wordpress allows Upload a Web Shell to a Web Server.This issue affects A… |
CVE-2025-26913 | Medium | 6.5 | 2025-02-25 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webandprint AR For WordPress ar-for-wordpress allows DOM-… |
CVE-2024-12300 | Low | 3.7 | 2024-12-13 | The AR for WordPress plugin for WordPress is vulnerable to unauthorized double extension file upload due to a missing capability check on the set_ar_featured_i… |