Awingsoft Awakening Winds3D Viewer Plugin vulnerabilities
2 known vulnerabilities affecting awingsoft/awakening_winds3d_viewer_plugin.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2009-4850P2CRITICALCVSS 9.3PoCv3.5.0.92010-05-07
CVE-2009-4850 [CRITICAL] CWE-119 CVE-2009-4850: The Awingsoft Awakening Winds3D Viewer plugin 3.5.0.9 allows remote attackers to execute arbitrary p
The Awingsoft Awakening Winds3D Viewer plugin 3.5.0.9 allows remote attackers to execute arbitrary programs via a SceneURL property value with a URL for a .exe file.
nvd
CVE-2009-2386P3CRITICALCVSS 9.3PoCv3.0.0.5v3.5.0.02009-07-10
CVE-2009-2386 [CRITICAL] CWE-20 CVE-2009-2386: Insecure method vulnerability in Awingsoft Awakening Winds3D Viewer plugin 3.5.0.0, 3.0.0.5, and pos
Insecure method vulnerability in Awingsoft Awakening Winds3D Viewer plugin 3.5.0.0, 3.0.0.5, and possibly other versions allows remote attackers to force the download and execution of arbitrary files via the GetURL method.
nvd