CVE-2023-1196

Posted on 2023년 5월 2일2023년 5월 2일 by admin

CVE-2023-1196

The Advanced Custom Fields (ACF) Free and Pro WordPress plugins 6.x before 6.1.0 and 5.x before 5.12.5 unserialize user controllable data, which could allow users with a role of Contributor and above to perform PHP Object Injection when a suitable gadget is present.

Source: CVE-2023-1196

답글 남기기 응답 취소