Lucene search
K

4 matches found

NVD
NVD
added 2022/04/19 9:15 p.m.26 views

CVE-2021-4096

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...

8.8CVSS0.00573EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/04/19 8:26 p.m.8 views

CVE-2021-4096 Fancy Product Designer <= 4.7.5 - Cross-Site Request Forgery to Arbitrary File Upload

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...

8.8CVSS6.9AI score0.00573EPSS
Exploits0References2
CVE
CVE
added 2022/04/19 8:26 p.m.80 views

CVE-2021-4096

CVE-2021-4096 affects the WordPress plugin Fancy Product Designer (versions up to and including 4.7.5). The vulnerability is a Cross-Site Request Forgery via the FPD_Admin_Import class that enables attackers to upload malicious files, potentially gaining webshell access to the server. Non-exploit...

8.8CVSS8.8AI score0.00573EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/19 8:26 p.m.30 views

CVE-2021-4096 Fancy Product Designer <= 4.7.5 - Cross-Site Request Forgery to Arbitrary File Upload

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...

8.8CVSS8.9AI score0.00573EPSS
Exploits0References2
Rows per page
Query Builder