Advanced Custom Fields: Font Awesome Field CVEs and Security Vulnerabilities

Filtered by vendor Mattkeys Subscriptions

Filtered by product Advanced Custom Fields: Font Awesome Field Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-14983	2 Mattkeys, Wordpress	2 Advanced Custom Fields: Font Awesome Field, Wordpress	2026-02-19	6.4 Medium
The Advanced Custom Fields: Font Awesome Field plugin for WordPress is vulnerable to Cross-Site Scripting in all versions up to, and including, 5.0.1 due to insufficient input sanitization and output escaping. This makes it possible forauthenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts that execute in a victim's browser.

Page 1 of 1.