WordPress Plugin Vulnerabilities

coreActivity < 2.1 - Unauthenticated IP Spoofing

Description

The plugin retrieved IP addresses of requests via headers such X-FORWARDED to log them, allowing users to spoof them by providing an arbitrary value

Proof of Concept

Affects Plugins

Plugin icon
coreactivity
Fixed in 2.1

References

CVE
CVE-2024-0868

Classification

Type
SPOOFING
OWASP top 10
A5: Broken Access Control
CWE
CWE-290
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
Erwan LR (WPScan)
Submitter
Erwan LR (WPScan)
Verified
Yes
WPVDB ID
bb7c2d2b-cdfe-433b-96cf-714e71d12b22

Timeline

Publicly Published
2024-03-27 (about 1 year ago)
Added
2024-03-27 (about 1 year ago)
Last Updated
2024-03-27 (about 1 year ago)

Other

Published
Title
Published
2024-09-04
Title
Security, Antivirus, Firewall – S.A.F <= 2.3.5 - IP Address Spoofing to Protection Mechanism Bypass
Published
2024-03-28
Title
Newsletter < 8.2.1 - IP Spoofing
Published
2023-12-29
Title
Malware Scanner < 4.7.2 - IP Spoofing
Published
2023-08-14
Title
User Activity Log < 1.6.7 - IP Spoofing
Published
2024-04-22
Title
Maintenance Mode by helderk < 3.0.2 - Unauthenticated IP Spoofing