cvelistv5 - CVE-2025-54940

CVE-2025-54940 (GCVE-0-2025-54940)

Vulnerability from cvelistv5 – Published: 2025-08-08 04:34 – Updated: 2025-08-08 16:11

Summary

An HTML injection vulnerability exists in WordPress plugin "Advanced Custom Fields" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered.

Severity ?

3.4 (Low)


                        
                          CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N

4.6 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N

CWE

CWE-94 - Code injection

Assigner

jpcert

References

URL

Tags

	https://www.advancedcustomfields.com/blog/acf-6-4…
	https://jvn.jp/en/jp/JVN21048820/

Impacted products

	Vendor	Product	Version
	WPEngine, Inc.	Advanced Custom Fields	Affected: prior to 6.4.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-54940",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-08-08T16:11:01.929075Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-08-08T16:11:14.551Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Advanced Custom Fields",
          "vendor": "WPEngine, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "prior to 6.4.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An HTML injection vulnerability exists in WordPress plugin \"Advanced Custom Fields\" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "baseScore": 3.4,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N",
            "version": "3.0"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        },
        {
          "cvssV4_0": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N",
            "version": "4.0"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "Code injection",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-08T04:34:02.380Z",
        "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "shortName": "jpcert"
      },
      "references": [
        {
          "url": "https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release/"
        },
        {
          "url": "https://jvn.jp/en/jp/JVN21048820/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
    "assignerShortName": "jpcert",
    "cveId": "CVE-2025-54940",
    "datePublished": "2025-08-08T04:34:02.380Z",
    "dateReserved": "2025-08-01T05:50:41.871Z",
    "dateUpdated": "2025-08-08T16:11:14.551Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-54940\",\"sourceIdentifier\":\"vultures@jpcert.or.jp\",\"published\":\"2025-08-08T05:15:32.317\",\"lastModified\":\"2025-08-08T20:30:18.180\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An HTML injection vulnerability exists in WordPress plugin \\\"Advanced Custom Fields\\\" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered.\"},{\"lang\":\"es\",\"value\":\"Existe una vulnerabilidad de inyecci\u00f3n HTML en el complemento de WordPress \\\"Advanced Custom Fields\\\" anterior a la versi\u00f3n 6.4.3. Si se explota esta vulnerabilidad, se podr\u00eda renderizar c\u00f3digo HTML manipulado y alterar la visualizaci\u00f3n de la p\u00e1gina.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"vultures@jpcert.or.jp\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":4.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"ACTIVE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"LOW\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV30\":[{\"source\":\"vultures@jpcert.or.jp\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N\",\"baseScore\":3.4,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.7,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"vultures@jpcert.or.jp\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"references\":[{\"url\":\"https://jvn.jp/en/jp/JVN21048820/\",\"source\":\"vultures@jpcert.or.jp\"},{\"url\":\"https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release/\",\"source\":\"vultures@jpcert.or.jp\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-54940\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-08-08T16:11:01.929075Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-08-08T16:11:10.475Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_0\": {\"version\": \"3.0\", \"baseScore\": 3.4, \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}, {\"format\": \"CVSS\", \"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 4.6, \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"WPEngine, Inc.\", \"product\": \"Advanced Custom Fields\", \"versions\": [{\"status\": \"affected\", \"version\": \"prior to 6.4.3\"}]}], \"references\": [{\"url\": \"https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release/\"}, {\"url\": \"https://jvn.jp/en/jp/JVN21048820/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"An HTML injection vulnerability exists in WordPress plugin \\\"Advanced Custom Fields\\\" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-94\", \"description\": \"Code injection\"}]}], \"providerMetadata\": {\"orgId\": \"ede6fdc4-6654-4307-a26d-3331c018e2ce\", \"shortName\": \"jpcert\", \"dateUpdated\": \"2025-08-08T04:34:02.380Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-54940\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-08-08T16:11:14.551Z\", \"dateReserved\": \"2025-08-01T05:50:41.871Z\", \"assignerOrgId\": \"ede6fdc4-6654-4307-a26d-3331c018e2ce\", \"datePublished\": \"2025-08-08T04:34:02.380Z\", \"assignerShortName\": \"jpcert\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-WW7Q-FQ8Q-PM4X

Vulnerability from github – Published: 2025-08-08 06:30 – Updated: 2025-08-08 06:30

Details

Severity ?

3.4 (Low)


                  
                    CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N

4.6 (Medium)


                  
                    CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-54940"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-08-08T05:15:32Z",
    "severity": "MODERATE"
  },
  "details": "An HTML injection vulnerability exists in WordPress plugin \"Advanced Custom Fields\" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered.",
  "id": "GHSA-ww7q-fq8q-pm4x",
  "modified": "2025-08-08T06:30:25Z",
  "published": "2025-08-08T06:30:25Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54940"
    },
    {
      "type": "WEB",
      "url": "https://jvn.jp/en/jp/JVN21048820"
    },
    {
      "type": "WEB",
      "url": "https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

CNVD-2025-18723

Vulnerability from cnvd - Published: 2025-08-15

Title

WordPress Advanced Custom Fields Plugin HTML注入漏洞

Description

WordPress Advanced Custom Fields Plugin是WordPress的一款强大自定义字段插件，允许在文章、页面、分类、用户等对象上添加多种类型的自定义字段（如图片、复选框、文件、文本等），支持导出为XML或PHP代码，并可集成到主题或插件中。 WordPress Advanced Custom Fields Plugin存在HTML注入漏洞，攻击者可利用该漏洞导致页面显示被篡改。

Severity

低

Patch Name

WordPress Advanced Custom Fields Plugin HTML注入漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级程序修复该安全问题，详情见厂商官网： https://wordpress.org/plugins/advanced-custom-fields/

Reference

https://jvn.jp/en/jp/JVN21048820/

Impacted products

Name
WordPress Advanced Custom Fields Plugin <6.4.3

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-54940",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-54940"
    }
  },
  "description": "WordPress Advanced Custom Fields Plugin\u662fWordPress\u7684\u4e00\u6b3e\u5f3a\u5927\u81ea\u5b9a\u4e49\u5b57\u6bb5\u63d2\u4ef6\uff0c\u5141\u8bb8\u5728\u6587\u7ae0\u3001\u9875\u9762\u3001\u5206\u7c7b\u3001\u7528\u6237\u7b49\u5bf9\u8c61\u4e0a\u6dfb\u52a0\u591a\u79cd\u7c7b\u578b\u7684\u81ea\u5b9a\u4e49\u5b57\u6bb5\uff08\u5982\u56fe\u7247\u3001\u590d\u9009\u6846\u3001\u6587\u4ef6\u3001\u6587\u672c\u7b49\uff09\uff0c\u652f\u6301\u5bfc\u51fa\u4e3aXML\u6216PHP\u4ee3\u7801\uff0c\u5e76\u53ef\u96c6\u6210\u5230\u4e3b\u9898\u6216\u63d2\u4ef6\u4e2d\u3002\n\nWordPress Advanced Custom Fields Plugin\u5b58\u5728HTML\u6ce8\u5165\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u9875\u9762\u663e\u793a\u88ab\u7be1\u6539\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u7a0b\u5e8f\u4fee\u590d\u8be5\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u89c1\u5382\u5546\u5b98\u7f51\uff1a\r\nhttps://wordpress.org/plugins/advanced-custom-fields/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-18723",
  "openTime": "2025-08-15",
  "patchDescription": "WordPress Advanced Custom Fields Plugin\u662fWordPress\u7684\u4e00\u6b3e\u5f3a\u5927\u81ea\u5b9a\u4e49\u5b57\u6bb5\u63d2\u4ef6\uff0c\u5141\u8bb8\u5728\u6587\u7ae0\u3001\u9875\u9762\u3001\u5206\u7c7b\u3001\u7528\u6237\u7b49\u5bf9\u8c61\u4e0a\u6dfb\u52a0\u591a\u79cd\u7c7b\u578b\u7684\u81ea\u5b9a\u4e49\u5b57\u6bb5\uff08\u5982\u56fe\u7247\u3001\u590d\u9009\u6846\u3001\u6587\u4ef6\u3001\u6587\u672c\u7b49\uff09\uff0c\u652f\u6301\u5bfc\u51fa\u4e3aXML\u6216PHP\u4ee3\u7801\uff0c\u5e76\u53ef\u96c6\u6210\u5230\u4e3b\u9898\u6216\u63d2\u4ef6\u4e2d\u3002\r\n\r\nWordPress Advanced Custom Fields Plugin\u5b58\u5728HTML\u6ce8\u5165\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u9875\u9762\u663e\u793a\u88ab\u7be1\u6539\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "WordPress Advanced Custom Fields Plugin HTML\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "WordPress Advanced Custom Fields Plugin \u003c6.4.3"
  },
  "referenceLink": "https://jvn.jp/en/jp/JVN21048820/",
  "serverity": "\u4f4e",
  "submitTime": "2025-08-15",
  "title": "WordPress Advanced Custom Fields Plugin HTML\u6ce8\u5165\u6f0f\u6d1e"
}

JVNDB-2025-000058

Vulnerability from jvndb - Published: 2025-08-08 15:29 - Updated:2025-08-08 15:29

Severity ?

3.4 (Low) - cvssV3_0 - CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N

Summary

WordPress plugin "Advanced Custom Fields" vulnerable to HTML injection

Details

Advanced Custom Fields provided by WPEngine, Inc. contains the following vulnerability.

HTML injection (WE-94) - CVE-2025-54940

Shogo Kumamaru of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

References

Type

URL

	JVN	https://jvn.jp/en/jp/JVN21048820/index.html
	CVE	https://www.cve.org/CVERecord?id=CVE-2025-54940
	No Mapping(CWE-Other)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

Vendor

Product

WP Engine

Advanced Custom Fields

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000058.html",
  "dc:date": "2025-08-08T15:29+09:00",
  "dcterms:issued": "2025-08-08T15:29+09:00",
  "dcterms:modified": "2025-08-08T15:29+09:00",
  "description": "Advanced Custom Fields provided by WPEngine, Inc. contains the following vulnerability.\r\n\u003cul\u003e\u003cli\u003eHTML injection (WE-94) - CVE-2025-54940\u003c/li\u003e\u003c/ul\u003e\r\nShogo Kumamaru of LAC Co., Ltd. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000058.html",
  "sec:cpe": {
    "#text": "cpe:/a:advancedcustomfields:advanced_custom_fields",
    "@product": "Advanced Custom Fields",
    "@vendor": "WP Engine",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "3.4",
    "@severity": "Low",
    "@type": "Base",
    "@vector": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N",
    "@version": "3.0"
  },
  "sec:identifier": "JVNDB-2025-000058",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN21048820/index.html",
      "@id": "JVN#21048820",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2025-54940",
      "@id": "CVE-2025-54940",
      "@source": "CVE"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-Other",
      "@title": "No Mapping(CWE-Other)"
    }
  ],
  "title": "WordPress plugin \"Advanced Custom Fields\" vulnerable to HTML injection"
}

FKIE_CVE-2025-54940

Vulnerability from fkie_nvd - Published: 2025-08-08 05:15 - Updated: 2025-08-08 20:30

Severity ?

3.4 (Low) - CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N

Summary

References

	URL	Tags
	vultures@jpcert.or.jp	https://jvn.jp/en/jp/JVN21048820/
	vultures@jpcert.or.jp	https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An HTML injection vulnerability exists in WordPress plugin \"Advanced Custom Fields\" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered."
    },
    {
      "lang": "es",
      "value": "Existe una vulnerabilidad de inyecci\u00f3n HTML en el complemento de WordPress \"Advanced Custom Fields\" anterior a la versi\u00f3n 6.4.3. Si se explota esta vulnerabilidad, se podr\u00eda renderizar c\u00f3digo HTML manipulado y alterar la visualizaci\u00f3n de la p\u00e1gina."
    }
  ],
  "id": "CVE-2025-54940",
  "lastModified": "2025-08-08T20:30:18.180",
  "metrics": {
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 3.4,
          "baseSeverity": "LOW",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "privilegesRequired": "HIGH",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 1.7,
        "impactScore": 1.4,
        "source": "vultures@jpcert.or.jp",
        "type": "Secondary"
      }
    ],
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "NETWORK",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 4.6,
          "baseSeverity": "MEDIUM",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "NOT_DEFINED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "HIGH",
          "providerUrgency": "NOT_DEFINED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "LOW",
          "userInteraction": "ACTIVE",
          "valueDensity": "NOT_DEFINED",
          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "NONE",
          "vulnIntegrityImpact": "NONE",
          "vulnerabilityResponseEffort": "NOT_DEFINED"
        },
        "source": "vultures@jpcert.or.jp",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-08-08T05:15:32.317",
  "references": [
    {
      "source": "vultures@jpcert.or.jp",
      "url": "https://jvn.jp/en/jp/JVN21048820/"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "url": "https://www.advancedcustomfields.com/blog/acf-6-4-3-security-release/"
    }
  ],
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "vultures@jpcert.or.jp",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-54940 (GCVE-0-2025-54940)

GHSA-WW7Q-FQ8Q-PM4X

CNVD-2025-18723

JVNDB-2025-000058

FKIE_CVE-2025-54940

Tags

Sightings

Nomenclature