CVE-2024-51919

Name of the Vulnerable Software and Affected Versions Fancy Product Designer versions n/a through 6.4.3

Description The issue affects Fancy Product Designer, allowing an attacker to upload files with dangerous types, potentially leading to remote code execution. This can have severe consequences. The problem is related to unrestricted file upload.

Recommendations For versions n/a through 6.4.3, consider disabling the file upload feature until a patch is available. Restrict access to the affected module to minimize the risk of exploitation. Avoid using the file upload functionality in the affected software until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.