Full title: WordPress FancyProductDesigner 3.4.2 Stored XSS Vulnerability 
Category: web applications
Platform: php
WordPress FancyProductDesigner plugin versions prior to 3.4.2 suffer from a persistent cross site scripting vulnerability due to improper sanitization, allowing malicious .svg file uploads.

# 0day.today @ http://0day.today/