CVE-2024-4565

🗓️ 20 Jun 2024 06:00:02Reported by WPScanType

Advanced Custom Fields (ACF) plugin allows unauthorized access via shortcod

Reporter	Title	Published	Views	Family All 15
Circl	CVE-2024-4565	25 Aug 202515:16	–	circl
CNNVD	WordPress plugin Advanced Custom Fields security vulnerability	20 Jun 202400:00	–	cnnvd
Cvelist	CVE-2024-4565 Advanced Custom Fields < 6.3 - Contributor+ Custom Field Access	20 Jun 202406:00	–	cvelist
EUVD	EUVD-2024-44177	3 Oct 202520:07	–	euvd
NVD	CVE-2024-4565	20 Jun 202406:15	–	nvd
OSV	CVE-2024-4565	20 Jun 202406:15	–	osv
Patchstack	WordPress Advanced Custom Fields plugin < 6.3 - Auth. Custom Field Access	3 Jun 202420:07	–	patchstack
Patchstack	WordPress Advanced Custom Fields Plugin < 6.3 is vulnerable to Sensitive Data Exposure	3 Jun 202400:00	–	patchstack
Patchstack	WordPress Advanced Custom Fields Pro plugin < 6.3 - Auth. Custom Field Access vulnerability	3 Jun 202420:13	–	patchstack
Patchstack	WordPress Advanced Custom Fields PRO Plugin < 6.3 is vulnerable to Sensitive Data Exposure	3 Jun 202400:00	–	patchstack

NVD

Vulners

Vulnrichment

Node

advancedcustomfields advanced_custom_fieldsRange<6.3-wordpress

advancedcustomfields advanced_custom_fieldsRange<6.3prowordpress

[
  {
    "vendor": "Unknown",
    "product": "Advanced Custom Fields (ACF)",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "6.3"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Advanced Custom Fields Pro",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "6.3"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/430224c4-d6e3-4ca8-b1bc-b2229a9bcf12/

27 Aug 2025 12:00Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.16.5 - 7.5

EPSS0.00189

SSVC