{"uuid": "c785a53a-4a63-4330-bff0-b4fc3e083a72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40068", "type": "published-proof-of-concept", "source": "https://t.me/hunter4good/248", "content": "https://twitter.com/HunterMapping/status/1693971279680790676\n\ud83d\udea8Alert\ud83d\udea8 CVE-2023-40068 #WordPress custom field(ACF) plugin #XSS vulnerability\n\n\ud83e\uddf7 https://hunter.how/list?searchValue=web.body%3D%22%2Fwp-content%2Fplugins%2Fadvanced-custom-fields-pro%22%20%7C%7Cweb.body%3D%22%2Fwp-content%2Fplugins%2Fadvanced-custom-fields%22%7C%7Cweb.body%3D%22%2Fwp-content%2Fplugins%2Facf-frontend-form-element%2F%22\n\nDork \ud83d\udc47\ud83d\udc47\ud83d\udc47\n\"/plugins/acf-frontend-form-element/\"\n\"/plugins/advanced-custom-fields-pro/\"\n\nRefer to \ud83d\udcf0\nhttps://securityonline.info/wordpress-custom-field-plugin-bug-cve-2023-40068-exposes-1m-sites-to-xss-attacks/\n#infosec #infosys #infosecurity", "creation_timestamp": "2023-08-22T15:14:26.000000Z"}