← volver
CVE-2021-20867

CVE-2021-20867

EPSS 1.4%
Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in moving the field group which may allow a user to move the unauthorized field group via unspecified vectors.
Productos afectados
Delicious Brains · Advanced Custom Fields and Advanced Custom Fields Pro

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jvn.jp/en/jp/JVN09136401/index.htmlhttps://wordpress.org/plugins/advanced-custom-fields/https://www.advancedcustomfields.com/