Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2022-4097
HistoryDec 12, 2022 - 5:54 p.m.

CVE-2022-4097 All In One WP Security & Firewall < 5.0.8 - IP Spoofing

2022-12-1217:54:35
WPScan
www.cve.org
3
cve-2022-4097
all-in-one security
wordpress plugin
ip spoofing
security features

EPSS

0.001

Percentile

33.3%

JSON

The All-In-One Security (AIOS) WordPress plugin before 5.0.8 is susceptible to IP Spoofing attacks, which can lead to bypassed security features (like IP blocks, rate limiting, brute force protection, and more).

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "All-In-One Security (AIOS)",
    "collectionURL": "https://wordpress.org/plugins",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "5.0.8"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

nvd 1
wpexploit 1
prion 1
openvas 1
wpvulndb 1
cve 1
nvd
nvd
CVE-2022-4097
2022-12-12 18:15:13
wpexploit
wpexploit
All In One WP Security & Firewall < 5.0.8 - IP Spoofing
2022-11-21 00:00:00
prion
prion
Design/Logic Flaw
2022-12-12 18:15:00
openvas
openvas
WordPress All In One WP Security & Firewall Plugin < 5.0.8 Authorization Bypass Vulnerability
2022-12-13 00:00:00
wpvulndb
wpvulndb
All In One WP Security & Firewall < 5.0.8 - IP Spoofing
2022-11-21 00:00:00
cve
cve
CVE-2022-4097
2022-12-12 18:15:13

EPSS

0.001

Percentile

33.3%

JSON
Related for CVELIST:CVE-2022-4097
nvd1wpexploit1prion1openvas1wpvulndb1cve1