Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Smart Custom Fields — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Smart Custom Fields, with AI-generated Chinese analysis, references, and POCs.

Vendor: inc2734

CVE IDTitleCVSSSeverityPublished
CVE-2026-4066 Smart Custom Fields <= 5.0.6 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Relational Post Search CWE-862 4.3 Medium2026-03-23
CVE-2025-22308 WordPress Smart Custom FIelds plugin <= 5.0.0 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2025-01-07
CVE-2024-1995 Smart Custom Fields <= 4.2.2 - Missing Authorization to Authenticated (Subscriber+) Post Content Disclosure CWE-862 4.3 Medium2024-03-20

All 3 known CVE vulnerabilities affecting Smart Custom Fields with full Chinese analysis, references, and POCs where available.