12 matches found
UBUNTU-CVE-2026-27824
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...
CVE-2026-27824 calibre has IP Ban Bypass via X-Forwarded-For Header Spoofing
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...
CVE-2026-27824 calibre has IP Ban Bypass via X-Forwarded-For Header Spoofing
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...
CVE-2026-27824 calibre has IP Ban Bypass via X-Forwarded-For Header Spoofing
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...
CVE-2017-18462
cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled SEC-224...
IP2Location Country Blocker < 2.26.5 - Ban Bypass
The plugin bans can be bypassed by using a specific parameter in the URL PoC https://example.com/?admin-ajax=hehe...
IP2Location Country Blocker < 2.26.5 - Ban Bypass
The plugin bans can be bypassed by using a specific parameter in the URL https://example.com/?admin-ajax=hehe...
WordPress IP2Location Country Blocker plugin <= 2.26.4 - Ban Bypass vulnerability
Ban Bypass vulnerability discovered by Krzysztof Zając in WordPress IP2Location Country Blocker plugin versions = 2.26.4. Solution Update the WordPress IP2Location Country Blocker plugin to the latest available version at least 2.26.5...
CVE-2017-18462
cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled SEC-224...
CVE-2017-18462
cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP based protection is enabled SEC-224...
CVE-2017-18462
cPanel before 62.0.17 allows a CPHulk one-day ban bypass when IP-based protection is enabled (SEC-224). The issue is documented across multiple sources as a vulnerability in cPanel up to version 62.0.16, with the fix in 62.0.17 identified. Root cause details are not elaborated in the provided doc...
CVE-2006-7047
The CVE-2006-7047 entry concerns include.php in Shoutpro 1.0, where a crafted path parameter could bypass IP ban restrictions by referencing an alternate bannedips.php file. The CVE description notes that this was originally reported as remote file inclusion, but the analysis indicates it cannot ...