Security Advisory

CVE-2022-1762

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-13 12:42:39

Last updated 2024-08-03 00:16:59

Assigner WPScan

State PUBLISHED

Description

The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass its block feature by spoofing the headers.

← Browse all CVEs View on cve.org ↗