Aprokopenko Just Custom Fields

2 CVEs affecting Aprokopenko Just Custom Fields. Latest disclosed: 2024-07-09. Critical: 0, High: 0.

Top CVEs affecting Aprokopenko Just Custom Fields
CVESeverityScorePublishedSummary
CVE-2024-6168Medium4.32024-07-09The Just Custom Fields plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.3.2. This is due to missing or…
CVE-2024-6167Medium4.32024-07-09The Just Custom Fields plugin for WordPress is vulnerable to unauthorized access of functionality due to a missing capability check on several AJAX functions i…