Radykal Fancy Product Designer

8 CVEs affecting Radykal Fancy Product Designer. Latest disclosed: 2026-01-16. Critical: 2, High: 2.

Top CVEs affecting Radykal Fancy Product Designer
CVESeverityScorePublishedSummary
CVE-2024-51818Critical9.32025-01-21Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in radykal Fancy Product Designer fancy-product-designer.Thi…
CVE-2024-51919Critical9.02025-01-21Unrestricted Upload of File with Dangerous Type vulnerability in radykal Fancy Product Designer fancy-product-designer.This issue affects Fancy Product Designe…
CVE-2021-4334High8.82023-10-20The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized modification of site options due to a missing capability check on the fpd_update_…
CVE-2025-12570High7.22025-12-12The Fancy Product Designer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.4.8 d…
CVE-2025-13231Medium6.52025-12-16The Fancy Product Designer plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 6.4.8. This is due to a time…
CVE-2021-4335Medium6.32023-10-20The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized access to data and modification of plugin settings due to a missing capability ch…
CVE-2025-13439Medium5.92025-12-16The Fancy Product Designer plugin for WordPress is vulnerable to Information Disclosure and PHAR Deserialization in all versions up to, and including, 6.4.8. T…
CVE-2025-15526Medium5.32026-01-16The Fancy Product Designer plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 6.4.8. This is due to improper erro…