CVE-2023-4281 in Activity Log PluginИнформация

Сводка

по MITRE • 25.09.2023

This Activity Log WordPress plugin before 2.8.8 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Резервировать

09.08.2023

Раскрытие

25.09.2023

Модерация

принято

Вход

VDB-240300

EPSS

0.00627

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

Want to know what is going to be exploited?

We predict KEV entries!