Lucene search
HistoryJun 20, 2024 - 6:15 a.m.
CVE-2024-4565
wordpress
plugin
security
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
16.5%
The Advanced Custom Fields (ACF) WordPress plugin before 6.3, Advanced Custom Fields Pro WordPress plugin before 6.3 allows you to display custom field values for any post via shortcode without checking for the correct access
Affected configurations
Node
advancedcustomfieldsadvanced_custom_fieldsRange<6.3-wordpress
ORadvancedcustomfieldsadvanced_custom_fieldsRange<6.3prowordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| advancedcustomfields | advanced_custom_fields | * | cpe:2.3:a:advancedcustomfields:advanced_custom_fields:*:*:*:*:-:wordpress:*:* |
| advancedcustomfields | advanced_custom_fields | * | cpe:2.3:a:advancedcustomfields:advanced_custom_fields:*:*:*:*:pro:wordpress:*:* |
Related
wpexploit
wpexploit
Advanced Custom Fields < 6.3 - Contributor+ Custom Field Access
2024-05-30 00:00:00
vulnrichment
vulnrichment
cve
cve
CVE-2024-4565
2024-06-20 06:15:09
wpvulndb
wpvulndb
Advanced Custom Fields < 6.3 - Contributor+ Custom Field Access
2024-05-30 00:00:00
cvelist
cvelist
wordfence
wordfence
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
16.5%
Related for NVD:CVE-2024-4565