Security Advisory

CVE-2023-44463

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-02 00:00:00

Last updated 2024-09-23 16:19:47

Assigner mitre

State PUBLISHED

Description

An issue was discovered in pretix before 2023.7.1. Incorrect parsing of configuration files causes the application to trust unchecked X-Forwarded-For headers even though it has not been configured to do so. This can lead to IP address spoofing by users of the application.

← Browse all CVEs View on cve.org ↗