Lucene search
China National Vulnerability DatabaseCNVD-2022-86455HistoryNov 23, 2022 - 12:00 a.m.
WordPress login-block-ips plugin has an unspecified vulnerability
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
wordpress
security vulnerability
ip spoofing
login-block-ips plugin
http request.
0.001 Low
EPSS
Percentile
34.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress login-block-ips plugin 1.0.0 and earlier versions have a security vulnerability that stems from the function check_is_login_page() using header for IP checking, which can be exploited by attackers to to spoof the IP in the http request header to deceive the server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress login-block-ips plugin | le | 1.0.0 |
Related
wpvulndb
wpvulndb
Login Block IPs <= 1.0.0 - IP Spoofing Bypass
2022-10-28 00:00:00
cvelist
cvelist
CVE-2022-1579 Login Block IPs <= 1.0.0 - IP Spoofing Bypass
2022-11-21 00:00:00
prion
prion
Design/Logic Flaw
2022-11-21 11:15:00
cve
cve
CVE-2022-1579
2022-11-21 11:15:19
nvd
nvd
CVE-2022-1579
2022-11-21 11:15:19
wpexploit
wpexploit
Login Block IPs <= 1.0.0 - IP Spoofing Bypass
2022-10-28 00:00:00