CVE-2024-13685 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to m…
Medium CVSS: 5.3

CVE-2024-13685

The Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate their value to bypass the login limit feature in the Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10.
Vendor
Wpase
Product
Admin And Site Enhancements
CWE
CWE-290
Yayın Tarihi
2025-03-04 06:15:27
Güncelleme
2025-05-14 14:51:01
Source Identifier
contact@wpscan.com
KEV Date Added
-

Kategoriler

CWE-290 Admin And Site Enhancements MEDIUM Wpase 2025

Referanslar

https://wpscan.com/vulnerability/72c61904-253d-42d1-9edd-7ea2162a2f85/