← Back to CVE List
CVE-2020-36172
Published:
2021-01-06T15:15Z
Last Modified:
2024-11-21T05:28Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The Advanced Custom Fields plugin before 5.8.12 for WordPress mishandles the escaping of strings in Select2 dropdowns, potentially leading to XSS. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt