WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Fancy Product Designer < 4.5.1 - Unauthenticated Stored Cross-Site Scripting

Description

Fancy Product Designer for WooCommerce before version 4.5.1 permits the upload of unsanitized SVG files by unauthenticated users. SVG files can contain JavaScript which will be executed by the browser if the malicious SVG is accessed directly. This JavaScript will run in the context of the affected domain and logged in user.

Affects Plugins

fancy-product-designer
Fixed in version 4.5.1

References

URL
https://github.com/jdgregson/Disclosures/blob/master/fancy-product-designer/stored-xss-via-svg-upload/
URL
https://packetstormsecurity.com/files/160120/

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

Jonathan Gregson

Verified

No

WPVDB ID
f4e2cd49-5c12-4b38-92c0-de07401c42c9

Timeline

Publicly Published

2020-11-18 (about 2 years ago)

Added

2020-11-18 (about 2 years ago)

Last Updated

2020-11-20 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin