CVE-2021-4252 WP-Ban ban-options.php toggle_checkbox cross site scripting

A vulnerability, which was classified as problematic, has been found in WP-Ban. This issue affects the function togglecheckbox of the file ban-options.php. The manipulation of the argument $SERVER"HTTPUSERAGENT" leads to cross site scripting. The attack may be initiated remotely. The name of the...

WP-Ban 安全漏洞

WP-Ban is a blog by Lester Chan, an individual developer, that bans users from accessing WordPress via IP, IP range, hostname, user agent, and referring url. A security vulnerability exists in WP-Ban, which stems from the manipulation of a parameter in the togglecheckbox function of its...