Vulnerabilidades en hwk-fr
9 resultadosCVE-2025-13486CRITICALAdvanced Custom Fields: Extended 0.9.0.5 - 0.9.1.1 - Unauthenticated Remote Code Execution in prepare_formEPSS 73.6%CVE-2024-0509MEDIUMWP 404 Auto Redirect to Similar Post <= 1.0.3 - Reflected Cross-Site Scripting via requestEPSS 1.2%CVE-2025-14533CRITICALAdvanced Custom Fields: Extended <= 0.9.2.1 - Unauthenticated Privilege Escalation via Insert User Form ActionEPSS 1.0%CVE-2026-8809CRITICALAdvanced Custom Fields: Extended <= 0.9.2.5 - Unauthenticated Privilege Escalation via Validation Bypass to '_acf_post_id' ParameterEPSS 0.8%CVE-2023-5292MEDIUMAdvanced Custom Fields: Extended <= 0.8.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.4%CVE-2024-32559HIGHWordPress WP 404 Auto Redirect to Similar Post plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2025-15463MEDIUMAdvanced Custom Fields: Extended <= 0.9.2.3 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.4%CVE-2023-40206MEDIUMWordPress WP 404 Auto Redirect to Similar Post Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2025-12037MEDIUMWP 404 Auto Redirect <= 1.0.5 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.2%