A newly disclosed security issue in the Advanced Custom Fields : Extended plugin has placed as many as 100,000 WordPress websites at serious risk , allowing attackers to take full control of affected sites without needing to log in. The vulnerability carries a critical severity score of 9.8 and enables attackers to create administrator accounts on vulnerable sites, effectively handing over complete ownership of the WordPress installation. What Is Advanced Custom Fields: Extended? Advanced Custom Fields: Extended (often called ACF Extended) is an enhancement plugin built to work alongside Advanced Custom Fields Pro . It’s widely used by developers and site owners to add advanced functionality such as: Front-end user forms Custom options pages Custom post types and taxonomies Enhanced admin dashboard customization More flexible content management workflows Because of its flexibility and ease of use, the plugin has gained broad adoption, especially on sites that rel...
WordPress News Updates
Stay updated with the latest WordPress news, security updates, plugin vulnerabilities, and important changes affecting WordPress websites.