Unrestricted File Upload Vulnerability in NotFound Fancy Product Designer Plugin
CVE-2024-51919
9CRITICAL
What is CVE-2024-51919?
A vulnerability exists in NotFound's Fancy Product Designer plugin that permits an unrestricted upload of potentially harmful files. This issue can allow attackers to upload and execute arbitrary files, thereby compromising the security of the affected WordPress installations. The vulnerability affects all versions of Fancy Product Designer from an unspecified state up to version 6.4.3.
Affected Version(s)
Fancy Product Designer <= 6.4.3