Security Advisory

CVE-2024-0365

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-18 19:05:42

Last updated 2024-08-08 20:38:59

Assigner WPScan

State PUBLISHED

Description

The Fancy Product Designer WordPress plugin before 6.1.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by adminstrators.

← Browse all CVEs View on cve.org ↗