Lucene search

K

WP Limit Login Attempts Security Vulnerabilities

cve
cve

CVE-2022-4303

The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based restrictions on login...

7.5CVSS

7.4AI Score

0.001EPSS

2023-01-23 03:15 PM
39
cve
cve

CVE-2015-6829

Multiple SQL injection vulnerabilities in the getip function in wp-limit-login-attempts.php in the WP Limit Login Attempts plugin before 2.0.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) X-Forwarded-For or (2) Client-IP HTTP...

8.9AI Score

0.005EPSS

2015-09-16 02:59 PM
19