Medium severity5.3NVD Advisory· Published Aug 31, 2024· Updated Jun 17, 2026
CVE-2022-4100
CVE-2022-4100
Description
The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up to, and including 9.4 due to the plugin improperly checking for a visitor's IP address. This makes it possible for an attacker whose IP address has been blocked to bypass this control by setting the X-Forwarded-For: HTTP header to an IP Address that hasn't been blocked.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<=9.4+ 1 more
- (no CPE)range: <=9.4
- (no CPE)
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.