← volver
CVE-2021-20866

CVE-2021-20866

EPSS 1.7%
Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in obtaining the user list which may allow a user to obtain the unauthorized information via unspecified vectors.
Productos afectados
Delicious Brains · Advanced Custom Fields and Advanced Custom Fields Pro

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jvn.jp/en/jp/JVN09136401/index.htmlhttps://wordpress.org/plugins/advanced-custom-fields/https://www.advancedcustomfields.com/