Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-6766

Malware in sbrugna...

7.5CVSS6.4AI score0.0235EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/22 11:55 p.m.6 views

CVE-2022-4303

The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based restrictions on login forms...

7.5CVSS6.7AI score0.00703EPSS
Exploits2References1
Prion
Prion
added 2023/01/23 3:15 p.m.15 views

Design/Logic Flaw

The WP Limit Login Attempts WordPress plugin through 2.6.4 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based restrictions on login forms...

5CVSS7.4AI score0.00703EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2015/09/16 2:59 p.m.13 views

CVE-2015-6829

Multiple SQL injection vulnerabilities in the getip function in wp-limit-login-attempts.php in the WP Limit Login Attempts plugin before 2.0.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 X-Forwarded-For or 2 Client-IP HTTP header...

7.5CVSS8.6AI score0.0235EPSS
Exploits1References5
Prion
Prion
added 2015/09/16 2:59 p.m.12 views

Sql injection

Multiple SQL injection vulnerabilities in the getip function in wp-limit-login-attempts.php in the WP Limit Login Attempts plugin before 2.0.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 X-Forwarded-For or 2 Client-IP HTTP header...

7.5CVSS9.3AI score0.0235EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2015/09/16 2:0 p.m.39 views

CVE-2015-6829

WP Limit Login Attempts plugin for WordPress (getip function) contains SQL injection vulnerabilities exploitable via the X-Forwarded-For and Client-IP HTTP headers. Affected versions are before 2.0.1. Consequences include arbitrary SQL execution on the database. Mitigation per connected sources i...

7.5CVSS8.9AI score0.0235EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2015/09/16 2:0 p.m.24 views

CVE-2015-6829

Multiple SQL injection vulnerabilities in the getip function in wp-limit-login-attempts.php in the WP Limit Login Attempts plugin before 2.0.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 X-Forwarded-For or 2 Client-IP HTTP header...

8.6AI score0.0235EPSS
Exploits1References5
Rows per page
Query Builder