Unrated severityNVD Advisory· Published Sep 16, 2022· Updated Aug 3, 2024

Titan Anti-spam & Security < 7.3.1 - Protection Bypass due to IP Spoofing

CVE-2022-2877

Description

The Titan Anti-spam & Security WordPress plugin before 7.3.1 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers.

Affected products

Awesome Weather Widget Project/Titan Anti Spam & Securityv5
Range: 7.3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/f1af4267-3a43-4b88-a8b9-c1d5b2aa9d68mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000