2022-06-20 10:25:54
WPScan
PUBLISHED
The WP-EMail WordPress plugin before 2.69.0 prioritizes getting a visitors IP from certain HTTP headers over PHPs REMOTE_ADDR, which makes it possible to bypass IP-based anti-spamming restrictions.