WordPress FancyProductDesigner 3.4.2 Stored XSS

deepcore

WordPress FancyProductDesigner plugin versions prior to 3.4.2 suffer from a persistent cross site scripting vulnerability due to improper sanitization, allowing malicious .svg file uploads.

Related Posts

Leave a Reply