CVE-2023-4281 in Activity Log Plugininformação

Sumário

de MITRE • 25/09/2023

This Activity Log WordPress plugin before 2.8.8 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

09/08/2023

Divulgação

25/09/2023

Moderação

aceite

Entrada

VDB-240300

CPE

pronto

EPSS

0.00627

KEV

não

Atividades

muito baixo

Fontes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!