Posted inCybersecurity News
Addressing HTML Injection Vulnerability in WordPress Advanced Custom Fields Plugin
The WordPress plugin "Advanced Custom Fields" (ACF), maintained by WPEngine, Inc., was recently subject to a significant security vulnerability involving HTML injection. This flaw affected all versions of the plugin prior to 6.4.3 and has since been addressed by a security update.
