CVE-2024-4565 | Advanced Custom Fields Plugin up to 6.2 on WordPress Shortcode access control

Posted by Angelo Barbosa | Jun 20, 2024 | CVE

A vulnerability was found in Advanced Custom Fields Plugin and Advanced Custom Fields Pro Plugin up to 6.2 on WordPress. It has been declared as critical. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-4565. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4565 | Advanced Custom Fields Plugin up to 6.2 on WordPress Shortcode access control

Related Posts

CVE-2024-6465 | WP Links Page up to 4.9.5 on WordPress Image authorization

CVE-2024-0302 | fhs-opensource iparking 1.5.22.RELEASE /vueLogin deserialization

CVE-2023-41927 | Kiloview P1/P2 up to 4.8.2605 risky encryption (NCSC-2024-0273)

CVE-2024-7897 | Tosei Online Store Management System ネット店舗管理システム /cgi-bin/tosei_kikai.php command injection