Lucene search
K

190 matches found

Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.7 views

PT-2022-25520 · Codeboxr · Codeboxr Cbx User Online & Last Login Plugin

Name of the Vulnerable Software and Affected Versions: codeboxr CBX User Online & Last Login Plugin affected versions not specified Description: A vulnerability was found in the codeboxr CBX User Online & Last Login Plugin, affecting the HTTP Header Handler component. The manipulation of the...

6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.2 views

PT-2022-25549 · WordPress · Getseofix Show Visitor Ip Address Widget/Shortcode Plugin

Name of the Vulnerable Software and Affected Versions: getseofix Show Visitor IP Address Widget and Shortcode Plugin affected versions not specified Description: A problematic vulnerability was found in the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to...

6.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.6 views

PT-2022-25537 · WordPress · Ip Location Block Plugin

Name of the Vulnerable Software and Affected Versions: IP Location Block Plugin affected versions not specified Description: A vulnerability was found in the IP Location Block Plugin, affecting an unknown functionality of the component HTTP Header Handler. The manipulation of the X-Forwarded-For...

6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.5 views

PT-2022-25580 · Top Infosoft · Top Infosoft Visitor Details Plugin

Name of the Vulnerable Software and Affected Versions: Top Infosoft Visitor Details Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Top Infosoft Visitor Details Plugin, which can be exploited remotely. The issue is related ...

6.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.5 views

PT-2022-25528 · Unknown · Yellow Tree Geolocation Ip Detection Plugin

Name of the Vulnerable Software and Affected Versions: Yellow Tree Geolocation IP Detection Plugin affected versions not specified Description: A vulnerability was found in the Yellow Tree Geolocation IP Detection Plugin, classified as problematic. It affects an unknown function of the component...

6.4AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.7 views

PT-2022-25502 · Unknown · Show Ip Address Plugin

Name of the Vulnerable Software and Affected Versions: Show IP Address Plugin affected versions not specified Description: A vulnerability was found in the Show IP Address Plugin, affecting the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper outpu...

6.4AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.4 views

PT-2022-25509 · Unknown · Banhammer Plugin

Name of the Vulnerable Software and Affected Versions: Banhammer Plugin affected versions not specified Description: A vulnerability has been found in the Banhammer Plugin, affecting the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper output...

6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/20 12:0 a.m.7 views

PT-2022-25493 · WordPress · Iridium Intelligence Bad Ip Wp Plugin

Name of the Vulnerable Software and Affected Versions: Iridium Intelligence bad ip WP Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Iridium Intelligence bad ip WP Plugin. The manipulation of the X-Forwarded-For argument...

6.2AI score
Exploits0References3
Prion
Prion
added 2022/11/16 8:15 a.m.16 views

Design/Logic Flaw

A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...

7.5CVSS9.5AI score0.00967EPSS
Exploits1References3
CNVD
CNVD
added 2022/11/16 12:0 a.m.22 views

WordPress Zoho Activity Log Input Validation Error Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Zoho Activity Log is vulnerable to an input validation error that originates from unknown...

5.3CVSS0.00685EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/11/16 12:0 a.m.4 views

PT-2022-25212 · WordPress · Simple History Plugin

Name of the Vulnerable Software and Affected Versions: Simple History Plugin affected versions not specified Description: A critical issue affects the Header Handler component of the Simple History Plugin, where the manipulation of the X-Forwarded-For argument leads to improper output...

9.8CVSS9.4AI score0.00967EPSS
Exploits1References6
CVE
CVE
added 2022/11/16 12:0 a.m.48 views

CVE-2022-4011

CVE-2022-4011 affects the WordPress Simple History Plugin, specifically the Header Handler. The issue arises from manipulation of the X-Forwarded-For argument, causing improper output neutralization in logs. The vulnerability is exploitable remotely and has been disclosed publicly. Several connec...

9.8CVSS8.2AI score0.00967EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2022/11/15 10:15 p.m.26 views

CVE-2022-4006

A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...

7.5CVSS0.00788EPSS
Exploits1References3
OSV
OSV
added 2022/11/15 10:15 p.m.13 views

CVE-2022-4006

A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...

7.5CVSS7.2AI score
Exploits0References3
Prion
Prion
added 2022/11/15 10:15 p.m.17 views

Design/Logic Flaw

A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...

5CVSS7.7AI score0.00788EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.25 views

CVE-2022-4006 WBCE CMS Header class.login.php increase_attempts excessive authentication

A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...

3.7CVSS7.9AI score0.00788EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/11/15 12:0 a.m.17 views

WBCE CMS 安全漏洞

WBCE CMS is an open source content management system CMS based on PHP and MySQL. WBCE CMS suffers from an Access Control Error vulnerability that stems from the increaseattempts function in the wbce/framework/class.login.php file in its Header Handler component not appropriately restricting too...

7.5CVSS7.1AI score0.00788EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.7 views

CVE-2022-4006 WBCE CMS Header class.login.php increase_attempts excessive authentication

A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...

3.7CVSS4.9AI score0.00788EPSS
Exploits1References3
NVD
NVD
added 2022/11/11 7:15 a.m.31 views

CVE-2022-3941

A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...

5.3CVSS0.00685EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/11/11 7:15 a.m.4 views

CVE-2022-3941

A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...

5.3CVSS5.6AI score0.00685EPSS
Exploits1References4
Rows per page
Query Builder