251 matches found
CVE-2025-31832
CVE-2025-31832 (ACF City Selector) is an unauthenticated sensitive-information-exposure vulnerability affecting the ACF City Selector plugin for WordPress, with affected versions up to 1.16.0. The CVSS base score is 5.3 (MEDIUM) and the attack vector is network with low attacker effort required. ...
CVE-2025-31832 WordPress ACF City Selector plugin <= 1.17.0 - Sensitive Data Exposure vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Beee ACF City Selector acf-city-selector allows Retrieve Embedded Sensitive Data.This issue affects ACF City Selector: from n/a through = 1.17.0...
CVE-2025-31832 WordPress ACF City Selector plugin <= 1.17.0 - Sensitive Data Exposure vulnerability
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Beee ACF City Selector acf-city-selector allows Retrieve Embedded Sensitive Data.This issue affects ACF City Selector: from n/a through = 1.17.0...
PT-2025-14211 · Unknown · Beee Acf City Selector
Name of the Vulnerable Software and Affected Versions: Beee ACF City Selector versions 1.16.0 and earlier Description: The issue allows exposure of sensitive system information to an unauthorized control sphere, enabling the retrieval of embedded sensitive data. Recommendations: For Beee ACF City...
WordPress ACF City Selector 1.14.0 Shell Upload
WordPress ACF City Selector plugin version 1.14.0 suffers from a remote shell upload vulnerability. ============================================================================================================================================= | Title : WordPress ACF City Selector plugin versions...
Exploit for CVE-2024-56264
CVE-2024-56264 WordPress ACF City Selector - Arbitrary Fil...
WordPress ACF City Selector 1.14.0 Shell Upload
WordPress ACF City Selector plugin versions 1.14.0 and below suffer from a remote shell upload vulnerability...
Exploit for CVE-2024-56264
CVE-2024-56264 WordPress ACF City Selector - Arbitrary Fil...
CVE-2024-48035
Unrestricted Upload of File with Dangerous Type vulnerability in takayukii ACF Images Search And Insert acf-images-search-and-insert allows Upload a Web Shell to a Web Server.This issue affects ACF Images Search And Insert: from n/a through = 1.1.4...
CVE-2024-56264
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector acf-city-selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through = 1.14.0...
CVE-2024-56264 WordPress ACF City Selector plugin <= 1.14.0 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector acf-city-selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through = 1.14.0...
CVE-2024-56264
The CVE-2024-56264 entry covers a vulnerability in the WordPress ACF City Selector plugin (versions
WordPress plugin ACF City Selector 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...
WordPress ACF City Selector plugin <= 1.14.0 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin ACF City Selector versions = 1.14.0...
CVE-2024-37250
CVE-2024-37250 corresponds to a Missing Authorization/Broken Access Control vulnerability in WordPress plugin Advanced Custom Fields PRO, affecting versions prior to 6.3.2 with a fixed release in 6.3.2. The core issue is misconfigured access control allowing subscriber-level context to access res...
CVE-2024-49593
CVE-2024-49593 affects the WordPress ecosystem via two plugins: Advanced Custom Fields (ACF) and Secure Custom Fields. The vulnerability is a stored XSS that can be triggered when editing a Field Group with the plugin editors, enabling execution of malicious payloads. Affected versions are ACF pr...
CVE-2024-49593
In Advanced Custom Fields ACF before 6.3.9 and Secure Custom Fields before 6.3.6.3 plugins for WordPress, using the Field Group editor to edit one of the plugin's fields can result in execution of a stored XSS payload. NOTE: if you wish to use the WP Engine alternative update mechanism for the fr...
CVE-2024-49593
In Advanced Custom Fields ACF before 6.3.9 and Secure Custom Fields before 6.3.6.3 plugins for WordPress, using the Field Group editor to edit one of the plugin's fields can result in execution of a stored XSS payload. NOTE: if you wish to use the WP Engine alternative update mechanism for the fr...
CVE-2024-48035
Unrestricted Upload of File with Dangerous Type vulnerability in takayukii ACF Images Search And Insert acf-images-search-and-insert allows Upload a Web Shell to a Web Server.This issue affects ACF Images Search And Insert: from n/a through = 1.1.4...
CVE-2024-48035 WordPress ACF Images Search And Insert plugin <= 1.1.4 - Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in takayukii ACF Images Search And Insert acf-images-search-and-insert allows Upload a Web Shell to a Web Server.This issue affects ACF Images Search And Insert: from n/a through = 1.1.4...