190 matches found
PT-2022-25520 · Codeboxr · Codeboxr Cbx User Online & Last Login Plugin
Name of the Vulnerable Software and Affected Versions: codeboxr CBX User Online & Last Login Plugin affected versions not specified Description: A vulnerability was found in the codeboxr CBX User Online & Last Login Plugin, affecting the HTTP Header Handler component. The manipulation of the...
PT-2022-25549 · WordPress · Getseofix Show Visitor Ip Address Widget/Shortcode Plugin
Name of the Vulnerable Software and Affected Versions: getseofix Show Visitor IP Address Widget and Shortcode Plugin affected versions not specified Description: A problematic vulnerability was found in the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to...
PT-2022-25537 · WordPress · Ip Location Block Plugin
Name of the Vulnerable Software and Affected Versions: IP Location Block Plugin affected versions not specified Description: A vulnerability was found in the IP Location Block Plugin, affecting an unknown functionality of the component HTTP Header Handler. The manipulation of the X-Forwarded-For...
PT-2022-25580 · Top Infosoft · Top Infosoft Visitor Details Plugin
Name of the Vulnerable Software and Affected Versions: Top Infosoft Visitor Details Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Top Infosoft Visitor Details Plugin, which can be exploited remotely. The issue is related ...
PT-2022-25528 · Unknown · Yellow Tree Geolocation Ip Detection Plugin
Name of the Vulnerable Software and Affected Versions: Yellow Tree Geolocation IP Detection Plugin affected versions not specified Description: A vulnerability was found in the Yellow Tree Geolocation IP Detection Plugin, classified as problematic. It affects an unknown function of the component...
PT-2022-25502 · Unknown · Show Ip Address Plugin
Name of the Vulnerable Software and Affected Versions: Show IP Address Plugin affected versions not specified Description: A vulnerability was found in the Show IP Address Plugin, affecting the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper outpu...
PT-2022-25509 · Unknown · Banhammer Plugin
Name of the Vulnerable Software and Affected Versions: Banhammer Plugin affected versions not specified Description: A vulnerability has been found in the Banhammer Plugin, affecting the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper output...
PT-2022-25493 · WordPress · Iridium Intelligence Bad Ip Wp Plugin
Name of the Vulnerable Software and Affected Versions: Iridium Intelligence bad ip WP Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Iridium Intelligence bad ip WP Plugin. The manipulation of the X-Forwarded-For argument...
Design/Logic Flaw
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
WordPress Zoho Activity Log Input Validation Error Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Zoho Activity Log is vulnerable to an input validation error that originates from unknown...
PT-2022-25212 · WordPress · Simple History Plugin
Name of the Vulnerable Software and Affected Versions: Simple History Plugin affected versions not specified Description: A critical issue affects the Header Handler component of the Simple History Plugin, where the manipulation of the X-Forwarded-For argument leads to improper output...
CVE-2022-4011
CVE-2022-4011 affects the WordPress Simple History Plugin, specifically the Header Handler. The issue arises from manipulation of the X-Forwarded-For argument, causing improper output neutralization in logs. The vulnerability is exploitable remotely and has been disclosed publicly. Several connec...
CVE-2022-4006
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
CVE-2022-4006
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
Design/Logic Flaw
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
CVE-2022-4006 WBCE CMS Header class.login.php increase_attempts excessive authentication
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
WBCE CMS 安全漏洞
WBCE CMS is an open source content management system CMS based on PHP and MySQL. WBCE CMS suffers from an Access Control Error vulnerability that stems from the increaseattempts function in the wbce/framework/class.login.php file in its Header Handler component not appropriately restricting too...
CVE-2022-4006 WBCE CMS Header class.login.php increase_attempts excessive authentication
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
CVE-2022-3941
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
CVE-2022-3941
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...