Cross-Site Request Forgery (CSRF) vulnerability leading to Arbitrary File Upload discovered by Lin Yu in WordPress Fancy Product Designer plugin (versions <= 4.7.5).
Update the WordPress Fancy Product Designer plugin to the latest available version (at least 4.7.6).
CPE | Name | Operator | Version |
---|---|---|---|
fancy product designer | le | 4.7.5 |