Satoo Nakano

**Name of the Vulnerable Software and Affected Versions** Poll Maker – Versus Polls, Anonymous Polls, Image Polls versions prior to 6.3.8 **Description** Insufficient access controls in the 'ays poll get user information' AJAX action allow authenticated attackers with subscriber-level access or higher to retrieve sensitive account data. The system serializes and returns the complete `WP User` object without nonce verification or capability checks beyond verifying if the user is logged in. Exposed data includes the `user pass` (bcrypt password hash), `user email`, `user login`, `user registered`, roles, and all capabilities. This information, particularly the password hash, can be used for offline password-cracking attacks. **Recommendations** Update to a version later than 6.3.7. As a temporary workaround, restrict access to the 'ays poll get user information' AJAX action to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Scott Reilly Get Custom Field Values plugin versions <= 4.0.1 **Description** The issue is related to an Authenticated Stored Cross-Site Scripting (XSS) vulnerability. This means that an attacker with admin+ privileges can inject malicious scripts into the application, which can then be executed by other users. The estimated number of potentially affected devices and details about real-world incidents are not provided. **Recommendations** For Scott Reilly Get Custom Field Values plugin versions <= 4.0.1, update to a version higher than 4.0.1 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Advanced Custom Fields versions 6.1.0 through 6.1.7 Advanced Custom Fields Pro versions 6.1.0 through 6.1.7 **Description** A cross-site scripting vulnerability allows a remote authenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product with administrative privilege. This issue potentially affects approximately 1 million sites. **Recommendations** For Advanced Custom Fields versions 6.1.0 through 6.1.7, update to a version later than 6.1.7 to resolve the issue. For Advanced Custom Fields Pro versions 6.1.0 through 6.1.7, update to a version later than 6.1.7 to resolve the issue. As a temporary workaround, consider restricting access to administrative privileges until a patch is applied.