Vulnerabilities

CVE-2024-0868

by Fred · 17/04/2024

The coreActivity: Activity Logging plugin for WordPress plugin before 2.1 retrieved IP addresses of requests via headers such X-FORWARDED to log them, allowing users to spoof them by providing an arbitrary value

More information : https://wpscan.com/vulnerability/bb7c2d2b-cdfe-433b-96cf-714e71d12b22/

Attack vector :
Attack complexity :
Privileges required :
User interaction :
Confidentiality impact :
Integrity impact :
Base score :
Base severity :
Exploitability score :
Impact score :

Similar

Tags: Cybersecurity Alert