CVE-2026-8809

NVD data not available for this CVE. It may be pending analysis or not yet published.

Related Intelligence (1)

NVD CRITICAL: CVE-2026-8809 — The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privi...

The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation via Validation Bypass in all versions up to and including 0.9.2.5. The vulnerability exists due to the after_validate_save_post() function unconditionally trusting the attacker-controlled _acf_post_id POST parameter — with no authentication or integrity verification — to select a cleanup branch that sil

CVE-2026-8809

4d agoNIST NVD