| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-47157 | WordPress WP Custom Fields Search Plugin <= 1.2.34 is vulnerable to Cross Site Scripting (XSS) | Don Benjamin | WP Custom Fields Search | Medium | 5.9 | 2023-05-18 10:09:47 | Deep Dive |
| CVE-2023-1839 | Product Addons & Fields for WooCommerce < 32.0.6 - Admin+ Stored Cross-Site Scripting | Unknown | Product Addons & Fields for WooCommerce | 中危 | - | 2023-05-15 12:15:46 | Deep Dive |
| CVE-2023-30777 | WordPress Advanced Custom Fields / Advanced Custom Fields PRO plugins <= 6.1.5 vulnerable to Cross Site Scripting (XSS) | WP Engine | Advanced Custom Fields Pro | High | 7.1 | 2023-05-10 05:50:04 | Deep Dive |
| CVE-2022-46864 | WordPress Woocommerce Custom Checkout Fields Editor With Drag & Drop Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS) | Umair Saleem | Woocommerce Custom Checkout Fields Editor With Drag & Drop | High | 7.1 | 2023-05-09 11:33:38 | Deep Dive |
| CVE-2023-23790 | WordPress Pods Plugin <= 2.9.10.2 is vulnerable to Cross Site Request Forgery (CSRF) | Pods Framework Team | Pods – Custom Content Types and Fields | High | 7.1 | 2023-05-03 09:58:30 | Deep Dive |
| CVE-2023-1196 | Advanced Custom Fields - Contributor+ PHP Object Injection | Unknown | Advanced Custom Fields (ACF) | 高危 | - | 2023-05-02 08:39:29 | Deep Dive |
| CVE-2023-0277 | WC Fields Factory <= 4.1.5 - ShopManager+ SQLi | Unknown | WC Fields Factory | 高危 | - | 2023-04-17 12:17:41 | Deep Dive |
| CVE-2023-28855 | Fields GLPI plugin vulnerable to unauthorized write access to additional fields | pluginsGLPI | fields | Medium | 6.5 | 2023-04-05 17:48:22 | Deep Dive |
| CVE-2023-23899 | WordPress Extensions For CF7 Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF) | HasThemes | Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) | Medium | 4.3 | 2023-02-17 14:14:11 | Deep Dive |
| CVE-2022-4831 | Custom User Profile Fields for User Registration & Member Frontend Profiles with Paid Memberships Pro < 1.8.1 - Contributor+ Stored XSS via Shortcode | Unknown | Custom User Profile Fields for User Registration & Member Frontend Profiles with Paid Memberships Pro | 中危 | - | 2023-01-30 20:31:56 | Deep Dive |
| CVE-2022-4442 | WCK < 2.3.3 - Admin+ Stored XSS | Unknown | Custom Post Types and Custom Fields creator | 中危 | - | 2023-01-16 15:37:54 | Deep Dive |
| CVE-2022-2594 | Advanced Custom Fields 5.0-5.12.2 - Unauthenticated File Upload | TODO | Advanced Custom Fields | 高危 | - | 2022-08-22 15:05:03 | Deep Dive |
| CVE-2022-2398 | WP Comments Fields < 4.1 - Admin+ Stored Cross-Site Scripting | Unknown | WordPress Comments Fields | 中危 | - | 2022-08-08 13:48:58 | Deep Dive |
| CVE-2022-23183 | WordPress Plugin Advanced Custom Fields 安全漏洞 | Delicious Brains | Advanced Custom Fields | 中危 | - | 2022-03-31 07:20:54 | Deep Dive |
| CVE-2021-24865 | Advanced Custom Fields: Extended < 0.8.8.7 - Admin+ SQL Injection | Unknown | Advanced Custom Fields: Extended | 高危 | - | 2022-01-24 08:00:52 | Deep Dive |
| CVE-2021-20867 | Delicious Brains Advanced Custom Fields 安全漏洞 | Delicious Brains | Advanced Custom Fields and Advanced Custom Fields Pro | 中危 | - | 2021-12-13 06:40:16 | Deep Dive |
| CVE-2021-20866 | Delicious Brains Advanced Custom Fields 安全漏洞 | Delicious Brains | Advanced Custom Fields and Advanced Custom Fields Pro | 中危 | - | 2021-12-13 06:40:14 | Deep Dive |
| CVE-2021-20865 | Delicious Brains Advanced Custom Fields 安全漏洞 | Delicious Brains | Advanced Custom Fields and Advanced Custom Fields Pro | 高危 | - | 2021-12-13 06:40:13 | Deep Dive |
| CVE-2021-24339 | Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS) | Pods Framework Team | Pods – Custom Content Types and Fields | 中危 | - | 2021-06-21 19:18:13 | Deep Dive |
| CVE-2021-24338 | Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS) | Pods Framework Team | Pods – Custom Content Types and Fields | 中危 | - | 2021-06-21 19:18:12 | Deep Dive |