WordPress custom field plugin bug (CVE-2023-40068) exposes 1M sites to XSS attacks
A cross-site scripting (XSS) vulnerability has been found in the Advanced Custom Fields (ACF) and Advanced Custom Fields Pro WordPress plugins. The vulnerability, tracked as CVE-2023-40068, affects versions 6.1.0 to...