CVE-2022-4539

MEDIUM 5.3

Web Application Firewall <= 2.1.2 - IP Address Spoofing to Protection Mechanism Bypass

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

The Web Application Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.1.2. This is due to insufficient restrictions on where the IP Address information is being retrieved for request logging and login restrictions. Attackers can supply the X-Forwarded-For header with with a different IP Address that will be logged and can be used to bypass settings that may have blocked out an IP address or country from logging in.

CWE	CWE-348
Vendor	cyberlord92
Product	web application firewall – website security
Published	Aug 31, 2024
Last Updated	Apr 8, 2026

Stay Ahead of the Next One

Get instant alerts for cyberlord92 web application firewall – website security

Be the first to know when new medium vulnerabilities affecting cyberlord92 web application firewall – website security are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

cyberlord92 / Web Application Firewall – website security

0 ≤ 2.1.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wordfence.com: https://www.wordfence.com/threat-intel/vulnerabilities/id/0e99531c-8742-4f91-8525-65bb3cb06644?source=cve plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/changeset/3055548/web-application-firewall/trunk/helper/utility.php

Credits

Mohammadreza Rashidi