Fancy Product Designer is the most popular product designer plugin on Codecanyon. On May 31, 2021, the Wordfence Threat Intelligence team reported that they found a critical security bug/vulnerability in the plugin.
The vulnerability allows a hacker to do unauthenticated file upload and remote code execution. The plugin is sold more than 17,000 copies. That means there are 17,000 websites that potential to be hacked.
On June 2, 2021, the Fancy Product Designer developer release a security patch to fix this security bug. If you use this plugin, we highly recommended updating the plugin as soon as possible. Then, scan your website to make sure no malware has been injected into your website.