WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Get started
WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Get started
WordPress Plugin Vulnerabilities
Fancy Product Designer
2022-04-14
Fancy Product Designer < 4.7.6 - Arbitrary File Upload via CSRF
Fixed in version 4.7.6
2022-02-08
Fancy Product Designer < 4.7.5 - Admin+ SQL Injection
Fixed in version 4.7.5
2021-06-01
Fancy Product Designer < 4.6.9 - Unauthenticated Arbitrary File Upload and RCE
Fixed in version 4.6.9
2020-11-18
Fancy Product Designer < 4.5.1 - Unauthenticated Stored Cross-Site Scripting
Fixed in version 4.5.1
Fixed in version 4.6.9Fixed in version 4.5.1Fixed in version 4.6.9Fixed in version 4.5.1