The Fancy Product Designer plugin for WordPress has a security issue where it does not check the type of file being uploaded. This can allow attackers to upload any type of file to the website, even if they are not authenticated. This could potentially lead to remote code execution on the site.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
