We have been made aware that the Advanced Custom Fields plugin on the WordPress directory has been taken over by WordPress dot org. A plugin under active development has never been unilaterally ...

CVE-2023-30777 may be enabled on a default Advanced Custom Fields installation or configuration, but only by logged-in users who have access to the plugin.

On October 12, 2024 local time, Mullenweg announced that he would fork ACF into a new plugin called 'Secure Custom Fields.' Mullenweg cited the fact that ACF updates are now done directly from the ...

The popular Advanced Custom Fields (ACF) plugin by WP Engine allows WordPress admins to add custom fields throughout their sites for an enhanced content management system experience.

A popular WordPress plugin could be putting around two million websites at risk of attack. Millions of WordPress-powered websites are using the Advanced Custom Fields and Advanced Custom Fields Pro ...

Cybersecurity researchers from PatchStack discovered a cross-site script (XSS) vulnerability in Advanced Custom Fields, a popular plugin for the WordPress website builder, with more than two ...