Unrated severityNVD Advisory· Published Jun 20, 2022· Updated Aug 3, 2024
WP-Email < 2.69.0 - Anti-Spam Protection Bypass via IP Spoofing
CVE-2022-1614
Description
The WP-EMail WordPress plugin before 2.69.0 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based anti-spamming restrictions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/a5940d0b-6b88-4418-87e2-02c0897bc2f1mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.