WordPress Plugin Vulnerabilities

Fancy Product Designer < 4.6.9 - Unauthenticated Arbitrary File Upload and RCE

Description

The plugin allows unauthenticated attackers to upload arbitrary files, resulting in remote code execution. The issue is being actively exploited, and no patch is available. Further details will be made available once pathed.

Proof of Concept

Affects Plugins

Plugin icon
fancy-product-designer
Fixed in 4.6.9

References

CVE
CVE-2021-24370
URL
https://www.wordfence.com/blog/2021/06/critical-0-day-in-fancy-product-designer-under-active-attack/

Miscellaneous

Original Researcher
Charles Sweethill/Ram Gall
Submitter
Ramuel Gall
Submitter twitter
ramuelgall
Verified
Yes
WPVDB ID
82c52461-1fdc-41e4-9f51-f9dd84962b38

Timeline

Publicly Published
2021-06-01 (about 4 years ago)
Added
2021-06-01 (about 4 years ago)
Last Updated
2021-06-25 (about 4 years ago)

Other

Published
Title
Published
2024-11-08
Title
Image Classify <= 1.0.0 - Unauthenticated Arbitrary File Upload
Published
2024-01-09
Title
Customer Reviews for WooCommerce < 5.38.10 - Author+ Arbitrary File Upload
Published
2015-06-10
Title
WordPress 4.1 - 4.1.1 - Arbitrary File Upload
Published
2024-11-27
Title
Tumult Hype Animations < 1.9.16 - Authenticated (Author+) Arbitrary File Upload via hypeanimations_panel Function
Published
2022-04-19
Title
Advanced Uploader <= 4.2 - Subscriber+ Arbitrary File Upload