5 matches found
CVE-2022-4303
The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based restrictions on login forms...
FreeBSD : Python -- multiple vulnerabilities (d86becfe-05a4-11ee-9d4a-080027eda32c)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d86becfe-05a4-11ee-9d4a-080027eda32c advisory. - The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's I...
CVE-2022-4303 WP Limit Login Attempts <= 2.6.4 - IP Spoofing
The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based restrictions on login forms...
CVE-2022-4303
CVE-2022-4303 affects the WordPress plugin WP Limit Login Attempts (versions up to 2.6.4). The root cause is that it prioritizes a visitor’s IP from certain HTTP headers over PHP’s REMOTE_ADDR, allowing bypass of IP-based login restrictions. This can enable an attacker to circumvent login form pr...
CVE-2022-4303 WP Limit Login Attempts <= 2.6.4 - IP Spoofing
The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based restrictions on login forms...