Vulnerabilities (CVE)

Filtered by vendor Wpmanageninja Subscribe
Filtered by product Fluentauth
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-4746 1 Wpmanageninja 1 Fluentauth 2024-11-21 N/A 7.5 HIGH
The FluentAuth WordPress plugin before 1.0.2 prioritizes getting a visitor's IP address from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass the IP-based blocks set by the plugin.