Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:32 p.m.10 views

CVE-2023-4279

This User Activity Log WordPress plugin before 1.6.7 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic...

7.5CVSS6.6AI score0.0086EPSS
Exploits2References1
NVD
NVD
added 2023/09/04 12:15 p.m.14 views

CVE-2023-4279

This User Activity Log WordPress plugin before 1.6.7 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic...

7.5CVSS7.4AI score0.0086EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/09/04 11:27 a.m.17 views

CVE-2023-4279 User Activity Log < 1.6.7 - IP Spoofing

This User Activity Log WordPress plugin before 1.6.7 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic...

7.7AI score0.0086EPSS
Exploits2References1
CVE
CVE
added 2023/09/04 11:27 a.m.75 views

CVE-2023-4279

The CVE-2023-4279 entry concerns the WordPress plugin “User Activity Log” prior to version 1.6.7. The vulnerability arises because the plugin retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate the perceived source of traffic, which could facilitat...

7.5CVSS7.5AI score0.0086EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2023/08/21 5:15 p.m.12 views

CVE-2022-4367

Rejected reason: Duplicate, use CVE-2023-4279 instead...

7.5AI score
Exploits1
Prion
Prion
added 2023/08/21 5:15 p.m.19 views

Open redirect

Rejected reason: Duplicate, use CVE-2023-4279 instead...

7.1AI score0.0086EPSS
Exploits2
Rows per page
Query Builder