Verge3D Publishing and E-Commerce

Vulnerabilities 7Slug verge3dLatest version 4.12.0WordPress.org →

Minimum safe version

4.9.5

Update to 4.9.5 or later to address 7 fixable vulnerabilities

Latest available4.12.0 ✓

Medium 5.3

2025-06-06< 4.9.5

CVE-2025-49268

N/A

2025-05-29< 4.9.4

Verge3D <= 4.9.3 - Reflected Cross-Site Scripting

Medium 4.3

2025-04-17< 4.9.3

CVE-2025-39443

Medium 4.3

2025-03-27< 4.8.3

CVE-2025-30833

High 7.1

2025-01-21< 4.8.1

CVE-2025-22709

Critical 9.9

2024-12-27< 4.5.3

WordPress Verge3D Plugin <= 4.5.2 is vulnerable to Arbitrary File Upload

Critical 9.1

2024-12-27< 4.5.3

WordPress Verge3D Plugin <= 4.5.2 is vulnerable to Remote Code Execution (RCE)