exploitDog

GHSA-62gq-fgj3-92v6

Опубликовано: 27 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The User Activity WordPress plugin through 1.0.1 checks headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing

The User Activity WordPress plugin through 1.0.1 checks headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing

Ссылки

EPSS

Процентиль: 34%

0.00136

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-290

CWE-639

Связанные уязвимости

CVE-2022-4550

CVSS3: 7.5

nvd

почти 3 года назад

The User Activity WordPress plugin through 1.0.1 checks headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing

EPSS

Процентиль: 34%

0.00136

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-290

CWE-639