WordPress IP Vault – WP Firewall Plugin <= 1.1 is vulnerable to Bypass Vulnerability

Software IP Vault – WP Firewall Type Plugin Vulnerable versions = 1.1 Fixed in 2.1 OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2022-4536 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 636ac61274e4 Credits rezaduty Required privilege...

CVE-2022-4536

creationtimestamp| type| source ---|---|--- 2024-08-31 11:42:56+00:00| seen| https://t.me/cvedetector/4574...

CVE-2022-4536

CVE-2022-4536 affects the IP Vault – WP Firewall WordPress plugin, vulnerable up to version 1.1. The issue is IP Address Spoofing via insufficient restrictions on where IP data is retrieved for request logging and login restrictions. Attackers can send a forged X-Forwarded-For header to have a lo...

CVE-2022-4536 IP Vault – WP Firewall <= 1.1 - IP Address Spoofing to Protection Mechanism Bypass

The IP Vault – WP Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1. This is due to insufficient restrictions on where the IP Address information is being retrieved for request logging and login restrictions. Attackers can supply the...

CVE-2022-4536 IP Vault – WP Firewall <= 1.1 - IP Address Spoofing to Protection Mechanism Bypass

The IP Vault – WP Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1. This is due to insufficient restrictions on where the IP Address information is being retrieved for request logging and login restrictions. Attackers can supply the...