CVE-2022-2877

UNKNOWN 0.0

Titan Anti-spam & Security < 7.3.1 - Protection Bypass due to IP Spoofing

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

The Titan Anti-spam & Security WordPress plugin before 7.3.1 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers.

CWE	CWE-639
Vendor	unknown
Product	titan anti-spam & security
Published	Sep 16, 2022
Last Updated	Aug 3, 2024

Stay Ahead of the Next One

Get instant alerts for unknown titan anti-spam & security

Be the first to know when new unknown vulnerabilities affecting unknown titan anti-spam & security are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Unknown / Titan Anti-spam & Security

7.3.1 < 7.3.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wpscan.com: https://wpscan.com/vulnerability/f1af4267-3a43-4b88-a8b9-c1d5b2aa9d68

Credits

Daniel Ruf