CVE-2020-36172
CVE-2020-36172
The Advanced Custom Fields plugin before 5.8.12 for WordPress mishandles the escaping of strings in Select2 dropdowns, potentially leading to XSS.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →