[] NeoSense
E X P L O I T S
title author type platform port cve id

Winds3D Viewer 3 - 'GetURL()' Arbitrary File Download

Author: Diego Juarez
type: remote
platform: multiple
port: 
date_added: 2009-06-08 
date_updated: 2014-05-01 
verified: 1 
codes: CVE-2009-2386;OSVDB-55863 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/35595/info

Winds3D Viewer is prone to a vulnerability that can allow malicious files to be downloaded an executed within the context of the affected browser that uses the plugin.

Successfully exploiting this issue will allow attackers to compromise the affected application that uses the plugin.

Winds3D Viewer 3.5.0.0 and 3.5.0.5 are vulnerable; other versions may also be affected.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/33067.usr
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.