CVE-2024-3050
May 29, 2024, 1:02 p.m.
Tags
Product(s) Impacted
Site Reviews WordPress plugin
- before 7.0.0
Description
The Site Reviews WordPress plugin before 7.0.0 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to bypass IP-based blocking
Weaknesses
Date
Published: May 29, 2024, 6:18 a.m.
Last Modified: May 29, 2024, 1:02 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
contact@wpscan.com
References
https://wpscan.com/
contact@wpscan.com