← back
CVE-2022-23183

CVE-2022-23183

EPSS 1.4%
Missing authorization vulnerability in Advanced Custom Fields versions prior to 5.12.1 and Advanced Custom Fields Pro versions prior to 5.12.1 allows a remote authenticated attacker to view the information on the database without the access permission.
Affected products
Delicious Brains · Advanced Custom Fields

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN42543427/index.htmlhttps://wordpress.org/plugins/advanced-custom-fields/https://www.advancedcustomfields.com/