184 matches found
PT-2022-25580 · Top Infosoft · Top Infosoft Visitor Details Plugin
Name of the Vulnerable Software and Affected Versions: Top Infosoft Visitor Details Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Top Infosoft Visitor Details Plugin, which can be exploited remotely. The issue is related ...
PT-2022-25509 · Unknown · Banhammer Plugin
Name of the Vulnerable Software and Affected Versions: Banhammer Plugin affected versions not specified Description: A vulnerability has been found in the Banhammer Plugin, affecting the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper output...
Design/Logic Flaw
A vulnerability was found in Simple History Plugin. It has been rated as critical. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack may be initiated remotely. T...
CVE-2022-4011
CVE-2022-4011 affects the WordPress Simple History Plugin, specifically the Header Handler. The issue arises from manipulation of the X-Forwarded-For argument, causing improper output neutralization in logs. The vulnerability is exploitable remotely and has been disclosed publicly. Several connec...
WordPress Zoho Activity Log Input Validation Error Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Zoho Activity Log is vulnerable to an input validation error that originates from unknown...
PT-2022-25212 · WordPress · Simple History Plugin
Name of the Vulnerable Software and Affected Versions: Simple History Plugin affected versions not specified Description: A critical issue affects the Header Handler component of the Simple History Plugin, where the manipulation of the X-Forwarded-For argument leads to improper output...
CVE-2022-4006
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
CVE-2022-4006
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
Design/Logic Flaw
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
CVE-2022-4006 WBCE CMS Header class.login.php increase_attempts excessive authentication
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
CVE-2022-4006 WBCE CMS Header class.login.php increase_attempts excessive authentication
A vulnerability, which was classified as problematic, has been found in WBCE CMS. Affected by this issue is the function increaseattempts of the file wbce/framework/class.login.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to improper restriction of...
WBCE CMS 安全漏洞
WBCE CMS is an open source content management system CMS based on PHP and MySQL. WBCE CMS suffers from an Access Control Error vulnerability that stems from the increaseattempts function in the wbce/framework/class.login.php file in its Header Handler component not appropriately restricting too...
CVE-2022-3941
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
Design/Logic Flaw
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
CVE-2022-3941
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
PT-2022-24963 · WordPress · Activity Log Plugin
Name of the Vulnerable Software and Affected Versions: Activity Log Plugin affected versions not specified Description: A critical issue has been found in the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper output neutralization for logs. This iss...
WordPress Plugin Zoho Activity Log 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Zoho Activity Log is vulnerable to an input validation error that originates from unknown...
CVE-2022-3941
The CVE-2022-3941 entry describes a vulnerability in the Activity Log Plugin’s HTTP Header Handler, where manipulating the X-Forwarded-For argument causes improper output neutralization in logs. Affected component: HTTP Header Handler within the WordPress Activity Log Plugin. Impact as stated: re...
CVE-2022-3941 Activity Log Plugin HTTP Header neutralization for logs
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
KLA11082 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
Multiple serious vulnerabilities have been found in Firefox and Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, privilege escalation, spoof user interface, bypass security restrictions, obtain sensitive information and execute arbitrary code. Below is...