CVE-2025-12570

The Fancy Product Designer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.4.8 due to insufficient input sanitization and output escaping in the data-to-image.php and pdf-to-image.php files. This makes it possible for...

WordPress plugin Fancy Product Designer 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site...

Memory Corruption Vulnerability in iPubsoft PDF to TIFF Converter for Windows

iPubsoft PDF to TIFF Converter for Windows is a PDF processing tool. A memory corruption vulnerability exists in iPubsoft PDF to TIFF Converter for Windows, which can be exploited by attackers to cause the program to crash by constructing malformed PDF files...