date:20201117

[FD] SEC Consult SA-20201117-0 :: Blind Out-Of-Band XML External Entity Injection in Avaya Web License Manager

2020-11-17 Thread SEC Consult Vulnerability Lab

SEC Consult Vulnerability Lab Security Advisory < 20201117-0 > === title: Blind Out-Of-Band XML External Entity Injection (Authenticated) product: Avaya Web License Manager vulnerable version: 6.

[FD] Fancy Product Designer for WooCommerce - Unrestricted File Upload

2020-11-17 Thread Jonathan Gregson via Fulldisclosure

## About Fancy Product Designer for WooCommerce Fancy Product Designer for WooCommerce is a WordPress plugin which allows users to design custom products in a vendor's WooCommerce store. It is sold through the third-party marketplace "Envato Market" and boasts over 15,000 sales. ## Unrestricted

[FD] Fancy Product Designer for WooCommerce - Stored XSS via SVG upload

2020-11-17 Thread Jonathan Gregson via Fulldisclosure

## About Fancy Product Designer for WooCommerce Fancy Product Designer for WooCommerce is a WordPress plugin which allows users to design custom products in a vendor's WooCommerce store. It is sold through the third-party marketplace "Envato Market" and boasts over 15,000 sales. ## Stored XSS vi

[FD] SEC Consult SA-20201117-0 :: Blind Out-Of-Band XML External Entity Injection in Avaya Web License Manager

[FD] Fancy Product Designer for WooCommerce - Unrestricted File Upload

[FD] Fancy Product Designer for WooCommerce - Stored XSS via SVG upload

3 matches

Site Navigation

Mail list logo

Footer information