Does 360 Javascript Viewer have any unpatched vulnerabilities?

No. All known vulnerabilities in 360 Javascript Viewer have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is 360 Javascript Viewer compatible with WordPress 6.8.5?

According to WordPress.org data, 360 Javascript Viewer 1.7.32 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is 360 Javascript Viewer compatible with PHP 7.0.0+?

360 Javascript Viewer requires PHP 7.0.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is 360 Javascript Viewer updated?

360 Javascript Viewer was last updated on Aug 24, 2025. Frequent updates are generally a positive security signal.

What is 360 Javascript Viewer's security score?

360 Javascript Viewer has a WP-Safety security score of 98/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

360 Javascript Viewer Security & Risk Analysis

wordpress.org/plugins/360deg-javascript-viewer

Turn a series of images into an interactive 360 degree view.

1K active installs v1.7.32 PHP 7.0.0+ WP 5.0+ Updated Aug 24, 2025

360360-degree360-product-viewerelementorwoocommerce

A · Safe

CVEs total3

Unpatched0

Last CVEDec 11, 2024

Plugin page Download

Safety Verdict

Is 360 Javascript Viewer Safe to Use in 2026?

Generally Safe

Score 98/100

360 Javascript Viewer has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Dec 11, 2024Updated 7mo ago

Risk Assessment

The static analysis of '360deg-javascript-viewer' v1.7.32 reveals a seemingly secure codebase with no identified critical or high-severity taint flows, dangerous functions, raw SQL queries, or direct file operations. The presence of nonce and capability checks on its limited entry points is a positive sign. However, a significant concern arises from the low percentage of properly escaped output (19%), indicating a substantial risk of Cross-Site Scripting (XSS) vulnerabilities where user-supplied data is rendered without proper sanitization. The plugin's history of 3 medium-severity vulnerabilities, specifically 'Cross-site Scripting' and 'Missing Authorization', further underscores this risk, despite none being currently unpatched. This pattern suggests a recurring struggle with input validation and output encoding, which could be exploited even with existing security measures in place.

Key Concerns

Low output escaping rate (19%)
History of XSS vulnerabilities
History of Missing Authorization vulnerabilities

Vulnerabilities

360 Javascript Viewer Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

2 CVEs in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

3 total CVEs

CVE-2024-12271medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

360 Javascript Viewer <= 1.7.29 - Authenticated (Administrator+) Stored Cross-Site Scripting

Dec 11, 2024 Patched in 1.7.30 (2d)

CVE-2024-1637medium · 4.3Missing Authorization

360 Javascript Viewer <= 1.7.12 - Missing Authorization to Plugin Settings Update

Mar 21, 2024 Patched in 1.7.13 (20d)

CVE-2023-48779medium · 5.3Missing Authorization

360 Javascript Viewer <= 1.7.11 - Missing Authorization

Nov 28, 2023 Patched in 1.7.12 (116d)

Code Analysis

Analyzed Mar 16, 2026

360 Javascript Viewer Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

7 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

19% escaped37 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

saveSettings (admin\pages\class-jsv-360-admin_page_abstract.php:43)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

360 Javascript Viewer Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 16

actionadmin_enqueue_scriptsincludes\class-jsv-360.php:73

actionadmin_enqueue_scriptsincludes\class-jsv-360.php:74

actionadmin_menuincludes\class-jsv-360.php:76

actionadmin_noticesincludes\class-jsv-360.php:79

actionadmin_initincludes\class-jsv-360.php:84

actionwp_enqueue_scriptsincludes\class-jsv-360.php:102

actionwp_enqueue_scriptsincludes\class-jsv-360.php:103

actionwidgets_initincludes\class-jsv-360.php:104

actioninitincludes\class-jsv-360.php:105

filterthe_contentincludes\class-jsv-360.php:107

actionelementor/widgets/registerincludes\elementor\class-jsv-360-elementor.php:56

actionadd_meta_boxesincludes\woo\class-jsv-360-woo.php:58

actionsave_postincludes\woo\class-jsv-360-woo.php:59

filterwoocommerce_single_product_image_thumbnail_htmlincludes\woo\class-jsv-360-woo.php:76

actionwp_enqueue_scriptsincludes\woo\class-jsv-360-woo.php:84

actionwp_enqueue_scriptsincludes\woo\class-jsv-360-woo.php:85

Maintenance & Trust

360 Javascript Viewer Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedAug 24, 2025

PHP min version7.0.0

Downloads39K

Community Trust

Rating100/100

Number of ratings13

Active installs1K

Alternatives

360 Javascript Viewer Alternatives

SR Product 360° View

sr-product-360o-view

Enhance your WooCommerce store with immersive 360° Product views. Engage customers, boost conversions, and showcase your Products like never befor …

300 No CVEs

Imajize

imajize

Imajize enables you to easily embed a 360° product spin into any Wordpress post or WooCommerce product by simply pasting an embed link.

80 No CVEs

Reality shop – Unlimited 3D for Elementor and WooCommerce

reality-shop-3d

100

🔥 Reality Shop 3D – WooCommerce 3D & 360° Product Viewer for WordPress

0 No CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

shopengine

WooCommerce builder for Elementor and Gutenberg. It offers product templates, product sliders, shopping cart, quick view, Woo wishlist, product filter …

90K 4 CVEs

Developer Profile

360 Javascript Viewer Developer Profile

Jeroen

1 plugin · 1K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

46 days

View full developer profile

Detection Fingerprints

How We Detect 360 Javascript Viewer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/360deg-javascript-viewer/public/css/jsv-360-public.css/wp-content/plugins/360deg-javascript-viewer/public/js/jsv-360-public.js/wp-content/plugins/360deg-javascript-viewer/admin/scss/jsv-360-admin.css/wp-content/plugins/360deg-javascript-viewer/admin/js/admin.js

Script Paths

js/admin.jspublic/js/jsv-360-public.js

Version Parameters

jsv-360-public.css?ver=jsv-360-public.js?ver=jsv-360-admin.css?ver=admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

jsv360-viewer

Data Attributes

data-jsv360-containerdata-jsv360-iddata-jsv360-config

JS Globals

jsvUpload

Shortcode Output

[jsv360[/jsv360]

FAQ