Typecho v1.3.0 was discovered to contain a Client IP Spoofing vulnerability, which allows attackers to falsify their IP addresses by specifying an arbitrary IP as value of X-Forwarded-For or Client-Ip headers while performing HTTP requests.
References
Configurations
No configuration.
History
20 Aug 2024, 15:44
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.3 |
Summary |
|
|
CWE | CWE-290 CWE-444 |
19 Aug 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-19 21:15
Updated : 2024-08-20 15:44
NVD link : CVE-2024-35538
Mitre link : CVE-2024-35538
CVE.ORG link : CVE-2024-35538
JSON object : View
Products Affected
No product.