Lucene search
China National Vulnerability DatabaseCNVD-2023-08773HistoryNov 16, 2022 - 12:00 a.m.
WordPress Zoho Activity Log Input Validation Error Vulnerability
2022-11-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
wordpress
zoho activity log
input validation
vulnerability
http header handler
log output.
EPSS
0.001
Percentile
34.5%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Zoho Activity Log is vulnerable to an input validation error that originates from unknown code in the component HTTP Header Handler, which can be exploited by an attacker to neutralize the log output by manipulating the parameter X-Forwarded-For to cause incorrect log output neutralization.
Related
cvelist
cvelist
CVE-2022-3941 Activity Log Plugin HTTP Header neutralization for logs
2022-11-11 00:00:00
cve
cve
CVE-2022-3941
2022-11-11 07:15:14
prion
prion
Design/Logic Flaw
2022-11-11 07:15:00
nvd
nvd
CVE-2022-3941
2022-11-11 07:15:14
fedora
fedora
[SECURITY] Fedora 36 Update: community-mysql-8.0.32-1.fc36
2023-02-16 01:26:21
[SECURITY] Fedora 37 Update: community-mysql-8.0.32-1.fc37
2023-02-16 02:05:27