Описание
The clientIp function in CakePHP 3.2.4 and earlier allows remote attackers to spoof their IP via the CLIENT-IP HTTP header.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | |
| bionic | DNE | |
| cosmic | not-affected | |
| devel | DNE | |
| disco | not-affected | |
| eoan | not-affected | |
| esm-apps/focal | not-affected | |
| esm-apps/jammy | not-affected | |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.3.15-1+deb7u2build0.14.04.1]] |
Показывать по
10
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
около 9 лет назад
The clientIp function in CakePHP 3.2.4 and earlier allows remote attackers to spoof their IP via the CLIENT-IP HTTP header.
CVSS3: 7.5
debian
около 9 лет назад
The clientIp function in CakePHP 3.2.4 and earlier allows remote attac ...
CVSS3: 7.5
github
больше 3 лет назад
CakePHP allows remote attackers to spoof their IP
5 Medium
CVSS2
7.5 High
CVSS3