CVE-2024-34761 | WPENGINE Advanced Custom Fields Pro Plugin up to 6.2.9 on WordPress code injection

Inserito da Angelo Barbosa | Giu 10, 2024 | CVE

A vulnerability was found in WPENGINE Advanced Custom Fields Pro Plugin up to 6.2.9 on WordPress. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to code injection.

This vulnerability was named CVE-2024-34761. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34761 | WPENGINE Advanced Custom Fields Pro Plugin up to 6.2.9 on WordPress code injection

Post correlati

CVE-2023-49042 | Tenda AX1803 1.0.0.1 setSchedWifi schedStartTime heap-based overflow

CVE-2024-43396 | khoj-ai khoj up to 1.14.x Task Instruction /api/automation q cross site scripting (GHSA-cf72-vg59-4j4h)

CVE-2023-48393 | Kaifa WebITR 2_1_0_23 information exposure

CVE-2024-0624 | Paid Memberships Pro Plugin up to 2.12.7 on WordPress Level Orders Update cross-site request forgery