CVE-2026-40729

Vulnerability Description

Missing Authorization vulnerability in bPlugins 3D viewer – Embed 3D Models 3d-viewer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 3D viewer – Embed 3D Models: from n/a through <= 1.8.5.

Vulnerability Details

Published Date

April 15, 2026

Last Modified

April 15, 2026

CWE ID

CWE-862

Source

NVD

Vendor

bPlugins

Product

3D viewer – Embed 3D Models

External References

https://patchstack.com/database/Wordpress/Plugin/3d-viewer/vulnerability/wordpress-3d-viewer-embed-3d-models-plugin-1-8-5-broken-access-control-vulnerability?_s_id=cve

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment