exploitDog

GHSA-v8j5-hjg7-w5w5

Опубликовано: 15 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

This User Activity Tracking and Log WordPress plugin before 4.1.4 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value.

This User Activity Tracking and Log WordPress plugin before 4.1.4 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value.

Ссылки

EPSS

Процентиль: 20%

0.00062

Низкий

7.5 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2024-0970

CVSS3: 5.3

nvd

9 месяцев назад

This User Activity Tracking and Log WordPress plugin before 4.1.4 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value.

EPSS

Процентиль: 20%

0.00062

Низкий

7.5 High

CVSS3

CVE ID