Description
WordPress Plugin WP Dev Powers:ACF Color Coded Field Types is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform a variety of the plugin's actions or even take over a website. WordPress Plugin WP Dev Powers:ACF Color Coded Field Types version 1.0 is vulnerable.
Remediation
Update Freemius library to it's latest version or disable the plugin until a fix is available
References
Related Vulnerabilities
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6212)
Jenkins CVE-2023-43494 Vulnerability (CVE-2023-43494)
Atlassian Jira Missing Authorization Vulnerability (CVE-2017-18101)
WordPress Plugin Wise Chat CSV Injection (2.8.3)
WordPress Plugin Video Conferencing with Zoom Cross-Site Scripting (3.9.2)