all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

WordPress custom field plugin bug exposes over 1M sites to XSS attacks

Add to bookmarks
May 5, 2023, 2:57 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Security researchers warn that the 'Advanced Custom Fields' and 'Advanced Custom Fields Pro' WordPress plugins, with millions of installs, are vulnerable to cross-site scripting attacks (XSS). [...]

advanced attacks bug cross-site plugin plugins pro researchers scripting security security researchers vulnerable wordpress wordpress plugins xss

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

CEO who sold fake Cisco devices to US military gets 6 years in prison 53 minutes ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14
Bitwarden launches new MFA Authenticator app for iOS, Android 2 hours ago | www.bleepingcomputer.com
android android devices app authenticator +12
CISA urges software devs to weed out path traversal vulnerabilities 3 hours ago | www.bleepingcomputer.com
cisa companies fbi path +9
Police shuts down 12 fraud call centres, arrests 21 suspects 4 hours ago | www.bleepingcomputer.com
albania arrests bosnia bosnia and herzegovina +17
Microsoft warns of "Dirty Stream" attack impacting Android apps 6 hours ago | www.bleepingcomputer.com
android android apps application apps +17
REvil hacker behind Kaseya ransomware attack gets 13 years in prison 8 hours ago | www.bleepingcomputer.com
attack hacker kaseya kaseya ransomware attack +12
Microsoft won't fix Windows 0x80070643 errors, manual fix required 8 hours ago | www.bleepingcomputer.com
automated environment errors fix +5
Cybersecurity consultant arrested after allegedly extorting IT firm 9 hours ago | www.bleepingcomputer.com
arrested confidential consultant cybersecurity +5
HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 1 day ago | www.bleepingcomputer.com
advisory april aruba arubaos +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Engineer, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

BaaN IV Techno-functional consultant-On-Balfour

@ Marlabs | Piscataway, US
View on infosec-jobs.com

Senior Security Analyst

@ BETSOL | Bengaluru, India
View on infosec-jobs.com

Security Operations Centre Operator

@ NEXTDC | West Footscray, Australia
View on infosec-jobs.com

Senior Network and Security Research Officer

@ University of Toronto | Toronto, ON, CA
View on infosec-jobs.com
View more jobs