Lucene search
Daniel RufWPVDB-ID:C1896AB9-9585-40E2-ABBF-EF5153B3C6B2HistoryOct 31, 2022 - 12:00 a.m.
WP-Polls < 2.76.0 - IP Validation Bypass
2022-10-3100:00:00
Daniel Ruf
wpscan.com
8
wp-polls
plugin
ip validation
0.001 Low
EPSS
Percentile
30.4%
The plugin prioritizes getting a visitor’s IP from certain HTTP headers over PHP’s REMOTE_ADDR, which makes it possible to bypass IP-based limitations to vote in certain situations.
Related
cvelist
cvelist
CVE-2022-1581 WP-Polls < 2.76.0 - IP Validation Bypass
2022-11-21 00:00:00
nvd
nvd
CVE-2022-1581
2022-11-21 11:15:20
cve
cve
CVE-2022-1581
2022-11-21 11:15:20
cnvd
cnvd
WordPress WP-Polls bypasses IP-based restrictions vulnerability
2022-11-23 00:00:00
patchstack
patchstack
WordPress WP-Polls plugin <= 2.75.6 - IP Validation Bypass vulnerability
2022-10-31 00:00:00
prion
prion
Design/Logic Flaw
2022-11-21 11:15:00