| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
| CVE-2021-24370 | 21 Jun 202100:00 | – | attackerkb | |
| CVE-2021-24370 | 19 Jun 202612:48 | – | circl | |
| WordPress和Fancy Product Designer 代码问题漏洞 | 2 Jun 202100:00 | – | cnnvd | |
| CVE-2021-24370 | 21 Jun 202100:00 | – | cve | |
| CVE-2021-24370 Fancy Product Designer < 4.6.9 - Unauthenticated Arbitrary File Upload and RCE | 21 Jun 202100:00 | – | cvelist | |
| CVE-2021-24370 | 21 Jun 202120:15 | – | nvd | |
| CVE-2021-24370 | 21 Jun 202120:15 | – | osv | |
| WordPress Fancy Product Designer premium plugin <= 4.6.8 - Unauthenticated Arbitrary File Upload and Remote Code Execution (RCE) vulnerabilities | 1 Jun 202100:00 | – | patchstack | |
| Remote code execution | 21 Jun 202120:15 | – | prion | |
| PT-2021-15906 · Unknown · Fancy Product Designer | 21 Jun 202100:00 | – | ptsecurity |
id: CVE-2021-24370
info:
name: WordPress Fancy Product Designer <4.6.9 - Arbitrary File Upload
author: pikpikcu
severity: critical
description: |
WordPress Fancy Product Designer plugin before 4.6.9 is susceptible to an arbitrary file upload. An attacker can upload malicious files and execute code on the server, modify data, and/or gain full control over a compromised system without authentication.
impact: |
Attackers can upload malicious files and execute arbitrary code on the target system.
remediation: |
Update WordPress Fancy Product Designer plugin to version 4.6.9 or later to fix the vulnerability.
reference:
- https://www.wordfence.com/blog/2021/06/critical-0-day-in-fancy-product-designer-under-active-attack/
- https://wpscan.com/vulnerability/82c52461-1fdc-41e4-9f51-f9dd84962b38
- https://seclists.org/fulldisclosure/2020/Nov/30
- https://nvd.nist.gov/vuln/detail/CVE-2021-24370
- https://www.secpod.com/blog/critical-zero-day-flaw-actively-exploited-in-wordpress-fancy-product-designer-plugin/
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2021-24370
cwe-id: CWE-434
epss-score: 0.47091
epss-percentile: 0.98689
cpe: cpe:2.3:a:radykal:fancy_product_designer:*:*:*:*:*:wordpress:*:*
metadata:
max-request: 1
vendor: radykal
product: fancy_product_designer
framework: wordpress
google-query: inurl:“/wp-content/plugins/fancy-product-designer”
tags: cve2021,cve,wordpress,wp,seclists,wpscan,rce,wp-plugin,fancyproduct,radykal,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/wp-content/plugins/fancy-product-designer/inc/custom-image-handler.php"
matchers-condition: and
matchers:
- type: word
part: body
words:
- '{"error":"You need to define a directory'
- type: word
part: header
words:
- "text/html"
- type: status
status:
- 200
# digest: 4b0a004830460221009c79def9d0278b68725bc9958c9f37e43f5038ab2f95c937553859c6bca21acd022100e7f196fffd7ac33ce2a1ab7b145a3a21441113031291df4f897a8a3509098bff:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation