Описание
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-213785 was assigned to this vulnerability.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Permissions RequiredThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
EPSS
6.5 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
Связанные уязвимости
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-213785 was assigned to this vulnerability.
EPSS
6.5 Medium
CVSS3
9.8 Critical
CVSS3