Page 2 of 11 results (0.005 seconds)
CVSS: 9.8EPSS: 29%CPEs: 1EXPL: 5
CVSS: 9.8EPSS: 29%CPEs: 1EXPL: 5CVE-2021-24370 – Fancy Product Designer < 4.6.9 - Unauthenticated Arbitrary File Upload and RCE
https://notcve.org/view.php?id=CVE-2021-24370
01 Jun 2021 — The Fancy Product Designer WordPress plugin before 4.6.9 allows unauthenticated attackers to upload arbitrary files, resulting in remote code execution. El plugin Fancy Product Designer de WordPress versiones anteriores a 4.6.9, permite a atacantes no autenticados cargar archivos arbitrarios, resultando en una ejecución de código remota • https://lists.openwall.net/full-disclosure/2020/11/17/2 • CWE-434: Unrestricted Upload of File with Dangerous Type •