Low severity3.4NVD Advisory· Published Aug 8, 2025· Updated Apr 15, 2026
CVE-2025-54940
CVE-2025-54940
Description
An HTML injection vulnerability exists in WordPress plugin "Advanced Custom Fields" prior to 6.4.3. If this vulnerability is exploited, crafted HTML code may be rendered and page display may be tampered.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<6.4.3+ 1 more
- (no CPE)range: <6.4.3
- (no CPE)range: <6.4.3
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.