← back
CVE-2018-20986

CVE-2018-20986

EPSS 0.9%
The advanced-custom-fields (aka Elliot Condon Advanced Custom Fields) plugin before 5.7.8 for WordPress has XSS by authors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wordpress.org/plugins/advanced-custom-fields/#developershttps://www2.deloitte.com/de/de/pages/risk/articles/wordpress-plugin-xss.htmlhttps://www.advancedcustomfields.com/blog/acf-5-7-8-release/https://www.advancedcustomfields.com/changelog/