CVE-2015-6829
WP Limit Login Attempts plugin for WordPress (getip function) contains SQL injection vulnerabilities exploitable via the X-Forwarded-For and Client-IP HTTP headers. Affected versions are before 2.0.1. Consequences include arbitrary SQL execution on the database. Mitigation per connected sources i...