Release 2.7.2

June 25, 2024
2 changes

This release contains security improvements for both ACF Pro and AT.

it includes the following security fixes: Security Fix - ACF now generates different nonces for each AJAX-enabled field, preventing subscribers or front-end form users from querying other field results Security Fix - ACF now correctly verifies permissions for certain editor only actions, preventing subscribers performing those actions Security Fix - Deprecated a legacy private internal…
AT now includes blank index.php files in all folders to prevent directory listing of AT plugin folders for incorrectly configured web servers