Wp3dprinting 3dprint_lite
6 CVEs affecting Wp3dprinting 3dprint_lite. Latest disclosed: 2025-04-08. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-4436 | Critical | 9.8 | 2024-02-05 | The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action… |
CVE-2025-3430 | Medium | 4.9 | 2025-04-08 | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'printer_text' parameter in all versions up to, and including, 2.1.3.6 due to insu… |
CVE-2025-3429 | Medium | 4.9 | 2025-04-08 | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'material_text' parameter in all versions up to, and including, 2.1.3.6 due to ins… |
CVE-2025-3428 | Medium | 4.9 | 2025-04-08 | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'coating_text' parameter in all versions up to, and including, 2.1.3.6 due to insu… |
CVE-2025-3427 | Medium | 4.9 | 2025-04-08 | The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infill_text' parameter in all versions up to, and including, 2.1.3.6 due to insuf… |
CVE-2024-10480 | Medium | 4.3 | 2024-12-06 | The 3DPrint Lite WordPress plugin before 2.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admi… |