5 matches found
CVE-2014-6230
WP-Ban plugin before 1.6.4 for WordPress, when running in certain configurations, allows remote attackers to bypass the IP blacklist via a crafted X-Forwarded-For header...
CVE-2014-6230
WP-Ban plugin before 1.6.4 for WordPress, when running in certain configurations, allows remote attackers to bypass the IP blacklist via a crafted X-Forwarded-For header...
CVE-2014-6230
CVE-2014-6230 affects the WordPress WP-Ban plugin, prior to version 1.6.4. The vulnerability arises because the plugin takes the IP address from the X-Forwarded-For header when configured in certain environments, bypassing the plugin’s IP blacklist. This allows remote attackers to bypass bans if ...
WordPress WP-Ban 1.62 Bypass Vulnerability
WordPress WP-Ban plugin version 1.62 suffers from a bypass vulnerability when a properly minted X-Forwarded-For header is used. Details ================ Software: WP-Ban Version: 1.62 Homepage: http://wordpress.org/plugins/wp-ban/ Advisory report:...
WordPress WP-Ban 1.62 Bypass
Details ================ Software: WP-Ban Version: 1.62 Homepage: http://wordpress.org/plugins/wp-ban/ Advisory report: https://security.dxw.com/advisories/vulnerability-in-wp-ban-allows-visitors-to-bypass-the-ip-blacklist-in-some-configurations/ CVE: CVE-2014-6230 CVSS: 5 Medium;...