Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Wpcerber Subscribe
Filtered by product Cerber Security Antispam \& Malware Scan
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-10990 1 Wpcerber 1 Cerber Security Antispam \& Malware Scan 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The wp-cerber plugin before 2.7 for WordPress has XSS via the X-Forwarded-For HTTP header.
CVE-2022-4100 1 Wpcerber 1 Cerber Security Antispam \& Malware Scan 2024-09-20 N/A 5.3 MEDIUM
The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up to, and including 9.4 due to the plugin improperly checking for a visitor's IP address. This makes it possible for an attacker whose IP address has been blocked to bypass this control by setting the X-Forwarded-For: HTTP header to an IP Address that hasn't been blocked.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024