Lucene search

CVE-2022-23556

🗓️ 22 Dec 2022 19:09:15Reported by GitHub_MType

CodeIgniter PHP framework vulnerability allows IP spoofing, patched in v4.2.1

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
RedhatCVE	CVE-2022-23556	5 Feb 202523:27	–	redhatcve
OSV	CodeIgniter4 allows spoofing of IP address when using proxy	22 Dec 202219:59	–	osv
OSV	BIT-codeigniter-2022-23556	6 Mar 202410:54	–	osv
OSV	CVE-2022-23556	22 Dec 202219:15	–	osv
Veracode	Spoofing Attacks	23 Dec 202207:34	–	veracode
Vulnrichment	CVE-2022-23556 CodeIgniter is vulnerable to IP address spoofing when using proxy	22 Dec 202218:50	–	vulnrichment
Github Security Blog	CodeIgniter4 allows spoofing of IP address when using proxy	22 Dec 202219:59	–	github
Prion	Design/Logic Flaw	22 Dec 202219:15	–	prion
NVD	CVE-2022-23556	22 Dec 202219:15	–	nvd
Cvelist	CVE-2022-23556 CodeIgniter is vulnerable to IP address spoofing when using proxy	22 Dec 202218:50	–	cvelist

Nvd

Vulners

Node

codeigniter codeigniterRange4.0.0–4.2.11

[
  {
    "vendor": "codeigniter4",
    "product": "CodeIgniter4",
    "versions": [
      {
        "version": "< 4.2.11",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/codeigniter4/CodeIgniter4/commit/5ca8c99b2db09a2a08a013836628028ddc984659
github	www.github.com/codeigniter4/CodeIgniter4/security/advisories/GHSA-ghw3-5qvm-3mqc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Dec 2022 19:15Current

7.1High risk

Vulners AI Score7.1

CVSS37 - 7.5

EPSS0.00068

SSVC

CWE-345