Title: Secure Custom Fields – security vulnerability? Last modified: October 16, 2024 --- # Secure Custom Fields – security vulnerability? * [JimByrneScotland](https://wordpress.org/support/users/jimbyrnescotland/) * (@jimbyrnescotland) * [1 year, 7 months ago](https://wordpress.org/support/topic/secure-custom-fields-security-vulnerability/) * Hi, My security plugin has flagged Secure Custom Fields as having a security vulnerability? I’ve done a bit of readig and it seems to be patched for the version I have but not fulling hardenned until the version after, i.e.  6.3.6.3. However, I don’t see any way to update to that version. Any ideas? * Thanks, Jim Viewing 4 replies - 1 through 4 (of 4 total) * [Carlos Pinedo](https://wordpress.org/support/users/carlos-pinedo/) * (@carlos-pinedo) * [1 year, 7 months ago](https://wordpress.org/support/topic/secure-custom-fields-security-vulnerability/#post-18077082) * The same here. This is WordFence report: [https://www.wordfence.com/threat-intel/vulnerabilities/detail/advanced-custom-fields-637-authenticated-admin-limited-arbitrary-function-call](https://www.wordfence.com/threat-intel/vulnerabilities/detail/advanced-custom-fields-637-authenticated-admin-limited-arbitrary-function-call) * [mperry8304](https://wordpress.org/support/users/mperry8304/) * (@mperry8304) * [1 year, 7 months ago](https://wordpress.org/support/topic/secure-custom-fields-security-vulnerability/#post-18077536) * I’m seeing this as well! * [Felipe Velzani](https://wordpress.org/support/users/felipevelzani/) * (@felipevelzani) * [1 year, 7 months ago](https://wordpress.org/support/topic/secure-custom-fields-security-vulnerability/#post-18078433) * Hi [@jimbyrnescotland](https://wordpress.org/support/users/jimbyrnescotland/), * If you can’t see this version somehow, my recommendation would be for you to follow this path: 1. Download the [6.3.6.3 version of Secure Custom Fields](https://downloads.wordpress.org/plugin/advanced-custom-fields.6.3.6.3.zip) 2. Go to your site WP Admin > Plugins > Add New 3. Upload the zip folks there * This should give you the option to update SCF manually. * Thread Starter [JimByrneScotland](https://wordpress.org/support/users/jimbyrnescotland/) * (@jimbyrnescotland) * [1 year, 7 months ago](https://wordpress.org/support/topic/secure-custom-fields-security-vulnerability/#post-18078687) * Ok thanks. Filipe. * 🙂 * Jim Viewing 4 replies - 1 through 4 (of 4 total) The topic ‘Secure Custom Fields – security vulnerability?’ is closed to new replies. * ![](https://ps.w.org/advanced-custom-fields/assets/icon.svg?rev=3207824) * [Advanced Custom Fields (ACF®)](https://wordpress.org/plugins/advanced-custom-fields/) * [Frequently Asked Questions](https://wordpress.org/plugins/advanced-custom-fields/#faq) * [Support Threads](https://wordpress.org/support/plugin/advanced-custom-fields/) * [Active Topics](https://wordpress.org/support/plugin/advanced-custom-fields/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/advanced-custom-fields/unresolved/) * [Reviews](https://wordpress.org/support/plugin/advanced-custom-fields/reviews/) * 6 replies * 6 participants * Last reply from: [JimByrneScotland](https://wordpress.org/support/users/jimbyrnescotland/) * Last activity: [1 year, 7 months ago](https://wordpress.org/support/topic/secure-custom-fields-security-vulnerability/#post-18078687) * Status: not resolved