Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Advanced Custom Fields (ACF®) — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in Advanced Custom Fields (ACF®), with AI-generated Chinese analysis, references, and POCs.

Vendor: wpengine

CVE IDTitleCVSSSeverityPublished
CVE-2026-4812 Advanced Custom Fields (ACF®) <= 6.7.0 - Unauthenticated Missing Authorization to Arbitrary Post/Page Disclosure via AJAX Field Query Parameters CWE-862 5.3 Medium2026-04-15
CVE-2023-6701 Advanced Custom Fields <= 6.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Field CWE-79 6.4 Medium2024-02-05

All 2 known CVE vulnerabilities affecting Advanced Custom Fields (ACF®) with full Chinese analysis, references, and POCs where available.