Title: Plugin Vulnerability
Last modified: October 27, 2025

---

# Plugin Vulnerability

 *  [dlindstr0m](https://wordpress.org/support/users/dlindstr0m/)
 * (@dlindstr0m)
 * [7 months ago](https://wordpress.org/support/topic/plugin-vulnerability-44/)
 * Hello,
 * We received a notification today that this plugin has a vulnerability:
 * Sensitive Data Exposure vulnerability discovered by Mohamad Fattyr in WordPress
   Plugin ACF to REST API (versions <= 3.3.4)
 * I just wanted to reach out and see if there were any plans to address this vulnerability.
   Thank you!

Viewing 1 replies (of 1 total)

 *  [watchtowerhq](https://wordpress.org/support/users/watchtowerhq/)
 * (@watchtowerhq)
 * [6 months, 3 weeks ago](https://wordpress.org/support/topic/plugin-vulnerability-44/#post-18706090)
 * [https://www.cve.org/CVERecord?id=CVE-2025-62979](https://www.cve.org/CVERecord?id=CVE-2025-62979)

Viewing 1 replies (of 1 total)

The topic ‘Plugin Vulnerability’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/acf-to-rest-api_cc0001.svg)
 * [ACF to REST API](https://wordpress.org/plugins/acf-to-rest-api/)
 * [Support Threads](https://wordpress.org/support/plugin/acf-to-rest-api/)
 * [Active Topics](https://wordpress.org/support/plugin/acf-to-rest-api/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/acf-to-rest-api/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/acf-to-rest-api/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [watchtowerhq](https://wordpress.org/support/users/watchtowerhq/)
 * Last activity: [6 months, 3 weeks ago](https://wordpress.org/support/topic/plugin-vulnerability-44/#post-18706090)
 * Status: not resolved