-
·
ACF patches vulnerability following Automattic disclosure misstep
ACF developers at WP Engine have patched a vulnerability affecting both the free and Pro versions of the popular plugin after Automattic broke with established security reporting practices and disclosed the issue on X. ACF 6.3.8 patches an arbitrary code execution vulnerability involving Post Type and Taxonomy metabox callbacks where a user with ACF admin…