WordPress Field Builder Plugin Vulnerability Exploited in Attacks Two Days After Patch

WordPress Field Builder Plugin Vulnerability Exploited in Attacks Two Days After Patch

Briefly

Threat actors were seen adopting public proof-of-concept (PoC) exploit code targeting a cross-site scripting (XSS) vulnerability in the Advanced Custom Fields WordPress plugin only two days after a patch was released, Akamai reports.Tracked as CVE-2023-30777, the high-severity vulnerability could allow attackers to inject malicious scripts and other payloads into vulnerable websites.