Description
WordPress Plugin Advanced Custom Fields PRO is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Advanced Custom Fields PRO version 6.0.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.0.3 or latest
References
Related Vulnerabilities
XWikiplatform Missing Authorization Vulnerability (CVE-2024-55879)
Oracle Database Server Improper Input Validation Vulnerability (CVE-2016-2381)
MySQL Improper Validation of Array Index Vulnerability (CVE-2022-21310)
WordPress Plugin GD Rating System Cross-Site Scripting (2.0.2)
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30384)