Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Advanced Custom Fields PRO Multiple Security Bypass Vulnerabilities - CVE-2021-20865 - Vulnerability Database
WP Plugin Advanced Custom Fields Pro

WordPress Plugin Advanced Custom Fields PRO Multiple Security Bypass Vulnerabilities - CVE-2021-20865

Medium
Reference: CVE-2021-20865
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-20865
Title: WordPress Plugin Advanced Custom Fields PRO Multiple Security Bypass Vulnerabilities
Overview:

WordPress Plugin Advanced Custom Fields PRO is prone to multiple security bypass vulnerabilities. Exploiting these issues may allow attackers to perform otherwise restricted actions and subsequently browse unauthorized data on the database or move field groups. WordPress Plugin Advanced Custom Fields PRO version 5.10 is vulnerable prior versions may also be affected.