The DoLogin Security WordPress... CVE-2023-4549
-
AV
AC
AU
C
I
A
发布:
2023-09-25
修订:
2023-11-07
The DoLogin Security WordPress plugin before 3.7 does not properly sanitize IP addresses coming from the X-Forwarded-For header, which can be used by attackers to conduct Stored XSS attacks via WordPress' login form.
漏洞利用/PoC
暂无可用Exp或PoC
受影响的平台与产品
当前有1条受影响产品信息
