Security Advisory

CVE-2022-4550

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-02-27 15:24:36

Last updated 2025-03-18 15:06:30

Assigner WPScan

State PUBLISHED

Description

The User Activity WordPress plugin through 1.0.1 checks headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing

← Browse all CVEs View on cve.org ↗