Vulnerabilities (CVE)

Filtered by vendor Hookturn Subscribe
Filtered by product Advanced Forms For Acf
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-1121 1 Hookturn 1 Advanced Forms For Acf 2024-02-28 N/A 5.3 MEDIUM
The Advanced Forms for ACF plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_json_file() function in all versions up to, and including, 1.9.3.2. This makes it possible for unauthenticated attackers to export form settings.