cleantalk
Vulnerabilities and Security Researches

Advanced Custom Fields: Font Awesome Field, CVE-2026-49044

CVE, Research URL

CVE-2026-49044

Home page URL

Security reports for Advanced Custom Fields: Font Awesome Field

Application

Advanced Custom Fields: Font Awesome Field

Published on
May 27, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Justin Kruit Advanced Custom Fields: Font Awesome Field allows Stored XSS. This issue affects Advanced Custom Fields: Font Awesome Field: from n/a through 5.0.2.
Affected versions
max 5.0.2.
Status
vulnerable
Previous vulnerability researches
jQuery googleslides (CVE-2026-8866) , May 28, 2026
New vulnerability
SlimStat Analytics (CVE-2026-7634) , May 28, 2026
GenerateBlocks (CVE-2026-48877) , May 28, 2026
Meta Field Block (CVE-2026-3173) , May 28, 2026
Dideo (CVE-2026-8847) , May 28, 2026
Splide Carousel Block (CVE-2026-9022) , May 28, 2026