Security Advisory

CVE-2020-36172

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-06 14:17:41
Last updated 2024-08-04 17:23:09
Assigner mitre
State PUBLISHED

Description

The Advanced Custom Fields plugin before 5.8.12 for WordPress mishandles the escaping of strings in Select2 dropdowns, potentially leading to XSS.

← Browse all CVEs View on cve.org ↗