CVE-2026-3243 | danbilabs Advanced Members for ACF Plugin up to 1.2.5 on WordPress Path Validation create_crop path traversal

Inserito da Angelo Barbosa | Apr 8, 2026 | CVE

A vulnerability classified as critical has been found in danbilabs Advanced Members for ACF Plugin up to 1.2.5 on WordPress. This affects the function create_crop of the component Path Validation Handler. This manipulation causes path traversal.

This vulnerability is registered as CVE-2026-3243. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-3243 | danbilabs Advanced Members for ACF Plugin up to 1.2.5 on WordPress Path Validation create_crop path traversal

Post correlati

CVE-2026-1102 | GitLab Community Edition/Enterprise Edition up to 18.6.3/18.7.1/18.8.1 allocation of resources

CVE-2024-44014 | Vmaxstudio Vmax Project Manager Plugin up to 1.0 on WordPress path traversal

CVE-2026-0605 | code-projects Online Music Site 1.0 /login.php username/password sql injection

CVE-2023-3533 | Chamilo LMS up to 1.11.20 File Upload additional_webservices.php path traversal