CVE-2023-4281 in Activity Log Plugin信息

摘要

由 VulDB • 2026-06-13

在 Activity Log WordPress 插件 2.8.8 版本之前,该插件从可能不可信的 HTTP 头中获取客户端 IP 地址,允许攻击者操纵其值。这可用于隐藏恶意流量的来源。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!