← volver
CVE-2023-0816

Formidable Forms < 6.1 - IP Spoofing

CVSS 6.5 MEDIUMEPSS 0.5%
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 6.5EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
27 mar 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The Formidable Forms WordPress plugin before 6.1 uses several potentially untrusted headers to determine the IP address of the client, leading to IP Address spoofing and bypass of anti-spam protections.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Productos afectados
Unknown · Formidable Forms