The Custom Field Template plugin for WordPress is vulnerable to a type of cyber attack called Reflected Cross-Site Scripting. This type of attack involves injecting malicious code into a website to make it execute if someone clicks on a link. Versions of the plugin up to 2.5.9 are affected because there are not enough measures in place to properly protect against this type of attack.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)
