CVE-2025-13231 | Fancy Product Designer Plugin up to 6.4.8 on WordPress getimagesize url server-side request forgery

A vulnerability described as critical has been identified in Fancy Product Designer Plugin up to 6.4.8 on WordPress. This issue affects the function getimagesize. The manipulation of the argument url results in server-side request forgery.

This vulnerability is identified as CVE-2025-13231. The attack can be executed remotely. There is not any exploit available.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.VulDB Recent EntriesRead More