CVE-2025-54940 Information
Aug 09, 2025
cve
Description
An HTML injection vulnerability exists in WordPress plugin \Advanced Custom Fields\ prior to 6.4.3. If this vulnerability is exploited crafted HTML code may be rendered and page display may be tampered.
Reference
https://jvn.jp/en/jp/JVN21048820/ https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release/
Related CNNVD
CNNVD-202508-747 (Published: 2025-08-08)
Share on: